• Journal of Information Technology Applications and Management
• /
• 제29권3호
• /
• pp.57-74
• /
• 2022

Recently, big data services have been used in various fields. In this situation, this research studied the intention to provide personal information from users, which is necessary to provide useful big data services. A survey was conducted on college students and ordinary people who have understood big data services. And path analysis was performed through Amos' structural equation. As a result of the study, it was found that privacy risks, trust in service providers, individual innovativeness, service incentives, social influence, and service design are major variables influencing the intention to provide personal information. And it was found that trust in service providers plays a mediating role in influencing the intention to provide personal information. In addition, big data services were classified into types for information acquisition and types related to purchase. Accordingly, it was further analyzed whether major variables differ in the path affecting the intention to provide personal information, and new implications were found. Companies that actually develop and provide big data services should establish different strategies by reflecting research results depending on the type of big data service provided.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제16권2호
• /
• pp.587-608
• /
• 2022

The European Union recently established the General Data Protection Regulation (GDPR) for secure data use and personal information protection. Inspired by this, South Korea revised their Personal Information Protection Act, the Act on Promotion of Information and Communications Network Utilization and Information Protection, and the Credit Information Use and Protection Act, collectively known as the "Three Data Bills," which prescribe safe personal information use based on pseudonymous data processing. Based on these bills, the personal data store (PDS) has received attention because it utilizes the MyData service, which actively manages and controls personal information based on the approval of individuals, and it practically ensures their rights to informational self-determination. Various types of PDS models have been developed by several countries (e.g., the US, Europe, and Japan) and global platform firms. The South Korean government has now initiated MyData service projects for personal information use in the financial field, focusing on personal credit information management. There is also a need to verify the efficacy of this service in diverse fields (e.g., medical). However, despite the increased attention, existing MyData models and frameworks do not satisfy security requirements of ensured traceability, transparency, and distributed authentication for personal information use. This study analyzes primary PDS models and compares them to an internationally standardized framework for personal information security with guidelines on MyData so that a proper PDS model can be proposed for South Korea.

• Journal of Multimedia Information System
• /
• 제7권3호
• /
• pp.215-220
• /
• 2020

Many state agencies and companies collect personal data for the purpose of providing public services and marketing activities and use it for the benefit and results of the organization. In order to prevent the spread of COVID-19 recently, personal data is being collected to understand the movements of individuals. However, due to the lack of technical and administrative measures and internal controls on collected personal information, errors and leakage of personal data have become a major social issue, and the government is aware of the importance of personal data and is promoting the protection of personal information. However, theory-based training and document-based intrusion prevention training are not effective in improving the capabilities of the privacy officer. This study analyzes the processing steps and types of accidents of personal data managed by the organization and describes measures against personal data leakage and misuse in advance. In particular, using Capture the Flag (CTF) scenarios, an evaluation platform design is proposed to respond to personal data breaches. This design was proposed as a troubleshooting method to apply ISMS-P and ISO29151 indicators to reflect the factors and solutions to personal data operational defects and to make objective measurements.

• 한국IT서비스학회지
• /
• 제21권3호
• /
• pp.1-25
• /
• 2022

The financial MyData service has implemented in January 2022 and launched 45 services by banks, securities, credit cards and fintech companies. This study applied the Q methodology, to identify the user types of MyData services and compared the perceptions of employees of financial institutions who plan and develop the MyData services. There are three types of MyData service users: active users, limited users who focus on consumption and asset status inquiry, and sensitive users for personal information. There were two types of recognition of financial company employees. One is the active user support other is the sensitive user for personal information support. The analysis of subjective perceptions can be used as a reference for establishing a company's MyData service marketing strategy and establishing related policies to improve the MyData ecosystem.

• 한국산학기술학회논문지
• /
• 제14권5호
• /
• pp.2415-2421
• /
• 2013

개인 정보의 이용이 사회 전반적으로 보편화되면서 이에 대한 중요성이 점차 부각되고, 개인 정보 유출사례가 증가하고 있다. 여러 가지 개인 정보 유출방지 방안이 제안되었으나 프린트 출력 시 개인 정보 유출 및 제어에 있어 기존 방안들은 검출이 되지 않거나 외부로의 유출 시 개인정보가 노출이 되는 단점들이 있다. 본 논문에서는 API-Hook 방법을 사용하여 출력물에 대해 개인정보를 검출하여 제어하고, 출력 된 문서에 대해서는 마스크하여 개인정보의 노출을 보안하는 방법을 제시한다. 또한 실제로 구현하여 개인정보가 포함 된 문서에 대해 보안을 보장 여부를 확인 하였다. 보안을 위해 기밀성만을 중요시하기 보다는 가용성과의 조화가 필요하다.

• 한국인터넷방송통신학회논문지
• /
• 제14권4호
• /
• pp.227-232
• /
• 2014

인터넷 기술이 발전되고, 보편화 되면서 상업과 자본의 대형화가 이루어져 대형 포털 사이트들이 등장하고 성장하게 되면서 인터넷상에서 시간이 흘러도 삭제되지 않는 개인정보 때문에 심각한 사생활 침해문제 등 새로운 위험요소가 제기되고 있다. 특히 마녀사냥 같은 개인의 신상 털기는 피해 당사자가 정상적인 생활이 불가능할 정도의 중대한 문제로 부각되고 있다. 따라서 본 논문에서는 국내외 사례분석을 통하여 개인이 온라인 사이트에 올라와 있는 자신과 관련된 정보 삭제를 요구할 수 있는 권리의 필요성과 국내 도입방안 및 적용에 관한 개선방안을 제안한다.

• Asia pacific journal of information systems
• /
• 제34권1호
• /
• pp.292-320
• /
• 2024

The amount of data a related to a person is so substantial that it appears that a digital version of them can be built thereon. They are usually handled as personal information, and the attempts made to understand personal information have led to bundling and unbundling of various data, yielding numerous fragmented categories of personal information. Therefore, we attempt to construct a generalizable lens for a deeper understanding of person-related data. We develop a theoretical framework that provides a fundamental method to understand these data as an entity of a digitally represented person based on literature review as well as the concepts of inforg and infosphere. The proposed framework suggests person-related data consist of three informational inforg dimensions that can preserve the archetype of a person, form, content, and interaction. Subsequently, the framework is examined and tested through several analyses in two different contexts: social media and online shopping mall. This framework demonstrates the suggested dimensions are interrelated with certain patterns, the prominent dimension can determine the data characteristics, and the dimensional composition of data types can imply the characteristics of the digitally represented person in certain contexts.

• 한국IT서비스학회지
• /
• 제15권4호
• /
• pp.41-62
• /
• 2016

In Internet of Things (IoT) era, more diverse types of information are collected and the environment of information usage, distribution, and processing is changing. Recently, there have been a growing number of cases involving breach and infringement of personal information in IoT services, for examples, including data breach incidents of Web cam service or drone and hacking cases of smart connected car or individual monitoring service. With the evolution of IoT, concerns on personal information protection has become a crucial issue and thus the risk analysis and management method of personal information should be systematically prepared. This study shows risk factors in IoT regarding possible breach of personal information and infringement of privacy. We propose "a risk analysis framework of protecting personal information in IoT environments" consisting of asset (personal information-type and sensitivity) subject to risk, threats of infringement (device, network, and server points), and social impact caused from the privacy incident. To verify this proposed framework, we conducted risk analysis of IoT services (smart communication device, connected car, smart healthcare, smart home, and smart infra) using this framework. Based on the analysis results, we identified the level of risk to personal information in IoT services and suggested measures to protect personal information and appropriately use it.

• Journal of Information Technology Applications and Management
• /
• 제13권3호
• /
• pp.1-28
• /
• 2006

In the ubiquitous computing environments. people usually carry multiple information technology devices with them. Personal device network (PDN) refers to the way how people connect multiple IT devices for their personal as well as professional purposes. Even though it has been Quite popular to construct the PDN in ubiquitous computing context, not much research has been conducted on how people actually connected multiple devices and what influences their methods of connection. In this paper we conducted a content analysis on community bulletin boards of IT devices and a contextual inquiry with expert users of PDN for investigating the configurations with which users connect multiple IT devices. Base on the results of two related studies, we identified three major types of PDN configurations, and key factors that influence the configurations of PDN. We conclude this research with guidelines to design a set of devices for each of the three configuration types.

• 대한가정학회지
• /
• 제37권3호
• /
• pp.63-84
• /
• 1999

The purpose of this study was to explore how family type based on intra system dynamics explained housewives'objective and subjective family financial well-being. The data were collected by means of questionnaire distributed to a stratified sample of 662 housewives in Seoul who usually managers household finances. The questionnaire included family cohesion and adaptability scale, communication scale, financial management scale, and subjective family financial well-being scale. Frequency, percentile, mean, Х$^2$ Pearson’s correlation, one-way ANOVA, multiple regression were used to analyze the data. The study had resulted in five major findings: 1. Among four intra system dynamics elements were highly relationships 2. Families were categorized tv four types, named personal-oriented(N: 164), managerial-oriented(N=169), dynamics(N=154), and non-dynamic(N=134) family. 3. The four types of family were influenced tv age of housewives, duration of marriage, and job status of husbands. 4. The four types of family were significantly related with subjective family financial well-being. The personal-oriented family type was significantly related with objective family financial well-being. 5. The dynamic family type showed the highest effect of subjective family financial well-being. The personal-oriented family type showed the greatest effect of objective family financial well-being. The recommendation for future research and better ways to enhance level of intra system dynamics elements and family financial well-being.