• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.28 no.2
• /
• pp.471-484
• /
• 2018

Recently, cyber threats are frequently occurring in ICS(industrial control systems) of government agencies, infrastructure, and manufacturing companies. In order to cope with such cyber threats, it is necessary to apply CTI to ICS. For this purpose, a security information collection system is needed. However, it is difficult to install security solution in control devices such as PLC. Therefor, it is difficult to collect security information of ICS. In addition, there is a problem that the security information format generated in various assets is different. Therefore, in this paper, we propose an efficient method to collect ICS security information. We utilize CybOX/STIX/TAXII CTI models that are easy to apply to ICS. Using this model, we designed the formats to collect security information of ICS assets. We created formats for system logs, IDS logs, and EWS application logs of ICS assets using Windows and Linux. In addition, we designed and implemented a security information collection system that reflects the designed formats. This system can be used to apply monitoring system and CTI to future ICS.

• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.20 no.4
• /
• pp.50-55
• /
• 2019

Recently Ransomware attacks are continuously increasing, and new Ransomware, which is difficult to detect just with a basic vaccine, continuously has its upward trend. Various solutions for Ransomware have been developed and applied. However, due to the disadvantages and limitations of existing solutions, damage caused by Ransomware has not been reduced. Ransomware is attacking various platforms no matter what platform it is, such as Windows, Linux, servers, IoT devices, and block chains. However, most existing solutions for Ransomware are difficult to apply to various platforms, and there is a limit that they are dependent on only some specific platforms while operating. This study analyzes the problems of existing Ransomware detection solutions and proposes the onboard module based Ransomware detection system; after the system defines the function of necessary elements through analyzing requirements that can actually reduce the damage caused by the Ransomware from the viewpoint of users, it supports various OS without pre-installation and is able to restore data even after being infected. We checked the feasibility of each function of the proposed system through the analysis of the existing technology and verified the suitability of the proposed techniques to meet the user's requirements through the questionnaire survey of a total of 264 users of personal and corporate PC users. As a result of statistical analysis of the questionnaire results, it was found that the score of intent to introduce the system was at 6.3 or more which appeared to be good, and the score of intent to change from existing solution to the proposed system was at 6.0 which appeared to be very high.

• 제어로봇시스템학회:학술대회논문집
• /
• 2004.08a
• /
• pp.132-137
• /
• 2004

On-Board Diagnostic(OBD) systems are in most cars and light trucks on the load today. During the 1970's and early 1980's manufacturers started using electronic means to control engine functions and diagnose engine problems. The CARB's diagnostic requirements to meet EPA emission standards have been designated as OBD with a goal of monitoring all of the emissions-related components, as well as the chassis, body, accessory devices and the diagnostic control network of the vehicle for proper operation. In this paper, we present a remote measurement system for the wireless monitoring of diagnosis signal and sensors output signals of ECU adopted KWP2000, united the OBD communication protocol, on OBD-compliant vehicle using the wirless communication technique of Bluetooth. In order to measure the ECU signals, the interface circuit is designed to communicate ECU and designed terminal wirelessly according to the ISO, SAE regulation of communication protocol standard. A microprocessor S3C3410X is used for communicating ECU signals. The embedded system's software is programmed to measure the ECU signals using the ARM compiler and ANCI C based on MicroC/OS kernel to communicate between bluetooth modules using bluetooth stack. The diagnostic system is developed using Visual C++ MFC and protocol stack of bluetooth for Windows environment. The self-diagnosis and sensor output signals of ECU is able to monitor using PC with bluetooth board connected in serial port of PC. The algorithms for measuring the ECU sensor output and self-diagnostic signals are verified to monitor ECU state. At the same time, the information to fix the vehicle's problem can be shown on the developed monitoring software. The possibility for remote measurement of self-diagnosis and sensor signals of ECU adopted KWP2000 in embedded system verified through the developed systems and algorithms.

• 한국HCI학회:학술대회논문집
• /
• 2009.02a
• /
• pp.785-790
• /
• 2009

Widgets are the instrument for representing user's character and embossing the value of blogs. The compound word of the Windows and Gadget the application, widgets are the functional program to displayed on the screen graphical user interface (GUI) tools as a kind of service that user want to see. On the operating system, the Web, and mobile area, widgets offer the delivery of information, convenience and efficiency. However widgets have been never gave satisfaction to user because it focused transmitting information and representing circumstance than fun. This study is for recognized fun elements that user feel interest and categorized fun elements each type of widgets. Fun elements of widget never been defined, we use fun elements on design and product area and emotional word that is representative of affectivity. And we make up an online questionnaire to blog users. The widget selected by popular degree among the domestic widgets and the Japanese widget. And the results of the questionnaire that 5-scales used based on user preferences to identify the elements that are fun.

• The Journal of the Korea Contents Association
• /
• v.15 no.4
• /
• pp.17-28
• /
• 2015

The applications program that running on Operating System has high dependence. Because environment of OS and standard libraries that supports are different. For those reason, Applications that perform the same function should be implemented in accordance with the new operating system. This results in a temporal and economic waste not only in subsequent maintenance of application but also in management. Even though, to solve this problem Cygwin or MinGW has been distributed, they do not support the portability of the application but provide a virtual environment and the tool. Therefore, in this paper, we design the wrapper format interface middleware using the POSIX and standard C library to support the application performing the same function on virtual environment and without code modification. The middleware can be selectively loading the API that is classified by basic and extend. This allows to managing the application size efficiently. Also, perform the comparative experiments and performance evaluation for application, on equipped with the Interface Middleware Linux, Unix, Windows and on Cygwin.

• Convergence Security Journal
• /
• v.6 no.4
• /
• pp.153-160
• /
• 2006

The control system is accomplishing very important role in our life currently as the national critical Infrastructure and large scale industry plant. We manage SCADA system to manage generally the control system interconnected with the information system. The operating system of SCADA is changing also to the well-known OS like Windows or UNIX for offer various convenience and facility to the user. We offered the reason why such change of the system makes so that it is exposed to cyber terror. In the traditional SCADA system is managed safely by an isolated network system physically. It is the trend to increase gradually though a cyber terror possibility is thinner on a control system than a information system but the cyber terror gives a nation or community wide damage influence of large scale if it happens. Therefore this paper presents a security safeguard plan about SCADA system and helps prepare systematic security strategy and enhance the security level implement.

• Journal of Korean Society on Water Environment
• /
• v.33 no.6
• /
• pp.769-779
• /
• 2017

Nutrient (i.e., nitrogen and phosphorus) budgets are required under a 'Livestock Excreta Survey'. A nutrient budget is one of the agri-environmental indicators that calculates the difference between the inputs and outputs of the amount of nutrients within a certain boundary and for a certain time period (e.g., 1 year). In this study, a nutrients budget model was developed to effectively determine the surplus of nutrients within a region in Korea. The C# program language was used in order to facilitate the deployment of a graphical user interface (GUI) and to enhance compatibility. Also, the model was developed on Windows OS, which is the commonly used operating system in Korea. The model was based on the OECD/Eurostat nutrient budget method, and it was modified to consider manure composting procedures as well. There are key features of the nutrient budget model, including directly use of the original data sets from various input and output sources, and a collectively exchange of the address in different formats. The model can quickly show the results of various spatial and temporal resolutions with the same data, as well as perform a sensitivity analysis with coefficients and easily compareresults using tables and graphs. Further, it would be necessary to study the extension of the scope of utilization, such as the application of various nutrient budget methods. It would also be helpful to investigate both pre and postprocessing information such as linking input data through online systems.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.11 no.11
• /
• pp.5642-5670
• /
• 2017

Antivirus is an important issue to the security of virtual machine (VM). According to where the antivirus system resides, the existing approaches can be categorized into three classes: internal approach, external approach and hybrid approach. However, for the internal approach, it is susceptible to attacks and may cause antivirus storm and rollback vulnerability problems. On the other hand, for the external approach, the antivirus systems built upon virtual machine introspection (VMI) technology cannot find and prohibit viruses promptly. Although the hybrid approach performs virus scanning out of the virtual machine, it is still vulnerable to attacks since it completely depends on the agent and hooks to deliver events in the guest operating system. To solve the aforementioned problems, based on in-memory signature scanning, we propose an agentless runtime antivirus system VirtAV, which scans each piece of binary codes to execute in guest VMs on the VMM side to detect and prevent viruses. As an external approach, VirtAV does not rely on any hooks or agents in the guest OS, and exposes no attack surface to the outside world, so it guarantees the security of itself to the greatest extent. In addition, it solves the antivirus storm problem and the rollback vulnerability problem in virtualization environment. We implemented a prototype based on Qemu/KVM hypervisor and ClamAV antivirus engine. Experimental results demonstrate that VirtAV is able to detect both user-level and kernel-level virus programs inside Windows and Linux guest, no matter whether they are packed or not. From the performance aspect, the overhead of VirtAV on guest performance is acceptable. Especially, VirtAV has little impact on the performance of common desktop applications, such as video playing, web browsing and Microsoft Office series.

• Proceedings of the Korea Water Resources Association Conference
• /
• 2019.05a
• /
• pp.264-264
• /
• 2019

개수로 흐름 해석을 위해 수치모형을 적용할 때 반드시 거쳐야 하는 과정이 격자망을 구성하는 일이다. 불규칙한 형상의 자연수로를 모의할 때 격자망 생성은 쉬운 일이 아니며, 따라서 가시적으로 격자망 생성을 돕고, 격자망의 수정도 용이한 도구가 요구된다. 따라서 본 연구에서는 수심적분된 흐름방정식을 지배방정식으로 하여 개수로 흐름 해석을 용이하게 하고자 그래픽 사용자 인터페이스(GUI)를 개발하였으며, 이를 소개하고자 한다. 격자망은 기본적으로 사각형과 삼각형 요소로 구성될 수 있으며, 유한차분모형 등에서는 정형사각형 격자망을, 유한요소모형에서는 비정형 사각형 및 삼각형 격자망 또는 혼합망을 생성시킬 수 있다. 이산점(scatter points)이나 절점(node points)을 생성하거나 기존의 자료를 불러들여 삼각망 또는 사각망을 형성시킬 수 있으며, 연속선(polylines)을 작성하여 형성된 폐다각형(polygones)을 이용하여 정규 또는 비정규의 삼각망 또는 사각망을 형성시킬 수 있다. 또한 두 점사이를 선형 또는 반원 형태로 편향 정도(biased value)를 설정하여 원하는 개수만큼 나눌 수 있도록 하여, 보다 효율적인 격자형성이 가능토록 하였다. 기존 상용 프로그램에서 작성된 격자를 불러들여 활용 가능하며, 백그라운드 이미지로 지형도나 위성사진을 띄어놓고 이미지 상에서 격자를 형성할 수도 있다. 기본적으로 마우스를 이용하여 화면의 이동, 확대 및 축소와 점, 선, 요소의 생성 및 선택이 가능하다. 본 프로그램은 Qt와 modern OpenGL을 바탕으로 제작되었으며, 마이크로소프트사의 windows 뿐만 아니라 Mac OS, Linux 버전의 설치 파일 작성이 가능하다.

• Journal of Digital Convergence
• /
• v.19 no.5
• /
• pp.397-405
• /
• 2021

The purpose of this study is to organize the system of special characters as UX/UI icon design elements, thus laying the groundwork for improvement direction for unclear use regulations. This study examines the theoretical background of UX/UI design and special characters and discovers UX/UI design and special characters' relations and assignments. Besides, the case study summarizes the system of special characters being utilized in the company's UX/UI icon design guidelines to produce the study results. As a result of the analysis, the special character types being utilized in UX/UI were graphic characters, mathematical symbols, punctuation marks, and parentheses. And the special characters commonly used in analysis cases, iOS, Android, and Windows, are ▶, ♥, ★, ○, ⊙, +, ×, ⋯. So this study organizes the common characters to standardize them. Hopefully, this study contributes to increasing the interest in the study of 'special characters' in the UX/UI design field and helps establish a framework for future industrial standards.