• Journal of Digital Convergence
• /
• v.12 no.7
• /
• pp.133-145
• /
• 2014

Recently, Hospital information systems have the large databases by wide range offices for hospital management, health care to improve the quality of care. However, hospital information systems for information security measures are insufficient. Therefore, when we construct the hospital information system, we have to audit the information security measures for them, and we have to manage the ISMS(Information Security Management System) to maintain the information protection level through the risk managements. In this paper, we suggested the hospital information security audit model for the protection of health information privacy by the current hospital information systems, information security management system(ISMS), and hospital information security requirements and threats. We derived the check items compared with ISO27799 reflected the characteristics of the hospital. We classified the security domains as the physical, technical, administrative domain, and derived the check items for information security. We also designed the check lists by mapping the ISO27799 risk management process to improve the security and efficiency simultaneously. Our model by the five-point scale survey of IT experts was verified the suitability with the average of 4.91 points.

• Journal of the Korean Institute of Intelligent Systems
• /
• v.11 no.7
• /
• pp.633-640
• /
• 2001

In this paper we examine the machine learning issues raised by the domain of the Intrusion Detection Systems(IDS), which have difficulty successfully classifying intruders. There systems also require a significant amount of computational overhead making it difficult to create robust real-time IDS. Machine learning techniques can reduce the human effort required to build these systems and can improve their performance. Genetic algorithms are used to improve the performance of search problems, while data mining has been used for data analysis. Data Mining is the exploration and analysis of large quantities of data to discover meaningful patterns and rules. Among the tasks for data mining, we concentrate the classification task. Since classification is the basic element of human way of thinking, it is a well-studied problem in a wide variety of application. In this paper, we propose a classifier system based on genetic algorithm, and the proposed system is evaluated by applying it to IDS problem related to classification task in data mining. We report our experiments in using these method on KDD audit data.

• Journal of KIISE:Information Networking
• /
• v.29 no.6
• /
• pp.674-684
• /
• 2002

Anomaly detection techniques have teen devised to address the limitations of misuse detection approach for intrusion detection. An HMM is a useful tool to model sequence information whose generation mechanism is not observable and is an optimal modeling technique to minimize false-positive error and to maximize detection rate, However, HMM has the short-coming of login training time. This paper proposes an effective HMM-based IDS that improves the modeling time and performance by only considering the events of privilege flows based on the domain knowledge of attacks. Experimental results show that training with the proposed method is significantly faster than the conventional method trained with all data, as well as no loss of recognition performance.

• Proceedings of the Korean Institute of Navigation and Port Research Conference
• /
• 2016.05a
• /
• pp.15-17
• /
• 2016

The congestion situation of Korea's port is further inclining due to the number of arriving and departing vessels and increase in the size of the size. Indicators for assessing whether the Vessel Traffic Congestion is called the Marine Traffic Congestion and it is used as a diagnostic entries in the Maritime Traffic Safety Audit System. In the diagnostic system, 6L (longitudinal) X 3.2L (transverse) is used as ship's domain in cases of harbor. This study is to determine the safety distance of the VTS officer and the ship operators by targeting the Busan harbor, which has the most number of ships that arrive/depart in Korea and listen to the communication of the VTS and calculate the communication time of the VTS officer and the ship operators for 7 days. By utilizing the distance communication port, the safety distance between the controllers and the ship operators is derived. It can be used for basic information of VTS Officer and Ship's operator's Safety distance in Busan port's in&out harbor.

• The KIPS Transactions:PartC
• /
• v.10C no.7
• /
• pp.857-866
• /
• 2003

For detecting an intrusion based on the anomaly of a user's activities, previous works are concentrated on statistical techniques in order to analyze an audit data set. However. since they mainly analyze the average behavior of a user's activities, some anomalies can be detected inaccurately. In this paper, a new clustering algorithm for modeling the normal pattern of a user's activities is proposed. Since clustering can identify an arbitrary number of dense ranges in an analysis domain, it can eliminate the inaccuracy caused by statistical analysis. Also, clustering can be used to model common knowledge occurring frequently in a set of transactions. Consequently, the common activities of a user can be found more accurately. The common knowledge is represented by the occurrence frequency of similar data objects by the unit of a transaction as veil as the common repetitive ratio of similar data objects in each transaction. Furthermore, the proposed method also addresses how to maintain identified common knowledge as a concise profile. As a result, the profile can be used to detect any anomalous behavior In an online transaction.

• Journal of the Korean Society of Marine Environment & Safety
• /
• v.20 no.5
• /
• pp.535-542
• /
• 2014

This research concluded that the area is most sensitively affected by the maritime traffic congestion rather than other factors including the ship's speed and fairway width. We performed a literature review for the area used in Japan, Denmark, and Shanghai ports, and analyzed by comparing with the area in Jinhae, Korea through the observation survey of marine traffic. The result of sensitivity analysis concluded that the congestion is affected by amount of 10% by changing 1 knot of the ship's speed, 18% of 100m of the fairway width, and 34%~43% of 1L of ship's length. By applying the result into the current audit system using $8L{\times}3.2L$, $6L{\times}1.6L$, we found that there is big difference with $3.5L{\times}1.5L$ in Japan, $5.9L{\times}2.2L$ in Shanghai, $4L{\times}5B$ in Denmark, and $3L{\times}2L$ in Jinhae, Korea. For this reason, further studies should be carried out in near future to the area mostly affected by congestion.

• Journal of Korean Academy of Nursing
• /
• v.22 no.3
• /
• pp.237-388
• /
• 1992

This study was done to identify the degree of congruence between nurses and patients on patients' health problems. The purposes of this study were 1. To compare the health problems of parturient women as identified by interview and in the nursing record. 2. To compare the health problems of patients who have had gynecological surgery as identified by interview and in the nursing record. 3. To compare the health problems of chemotherapy patients as identified by interview and in the nursing record. The design of this study was a comparative descriptive design. The subjects were 205 Obstetric-Gynecologic patients. The tool for this study was an 11 item questionnaire, including one open ended question on the patient's problem during the past one day. Data was collected through interviews and an audit of the nursing records during the period from March 22, 1992 to April 29, 1992. Data was analyzed using by frequencies and percentiles. The result of this study were summarized as follows : Pain was the most prevalent complaint for parturient women by interview(60.3% ) and from the nursing records(83.2%). There was no record in the nursing records about the complaints of lack of information and emotional problems even though there were complaints of communication problems (17.6%) and of emotional problems(3.5%) identified in the interviews but there were more records of cardiopulmonary problems in nurses record(9.1%) than the patient interviews (3.3%). In the nursing records 25.9% of the identified records identified pain problems compared with 23.3% in the interviews. In the nursing records, 22.3% of the records identified nutrition problem as compared with 18.2% in the interview. There were only a very few emotional problem identified in the nursing records (3.7%) as compared to 18.2% in the interviews. There were no comments about communication problems in the nursing records but 5.2% of the subjects mentioned of communication problems in the patient interview. There were problems in five categories for the parturient women ; comfort, communication, activity and rest, elimination, emotions, and there were problems in ten categories for the surgery patients : comfort, elimination, communication, emotions, nutrition, cardiopulmonary, thermoregulation, physical integrity, host defense and activity /rest. There were also problems in the same ten categories for chemotherapy Patients. On the other hand, in the nursing records, only comfort activity /rest, and elimination problems were identified for the parturient women, there were only seven categories of problems : comfort, elimination, cardiopulmonary, activity /rest, and nutrition for the gynecology surgical patients, and for the chemotherapy Patients, comfort, nutrition, physical integrity, cardiopulmonary, activity /rest, thermoregulation, emotion and elimination were the categories identified, and no communication problems were identified. It was found that there was low congruence between the patients' problems as identified through patient interview and as recorded in the nursing records. Therefore it can be concluded that the main content of the nursing records is the physical problems of the patients and this is not in congruence with the patients' reported problems in the emotional and communication domain.