• ETRI Journal
• /
• 제35권4호
• /
• pp.726-729
• /
• 2013

For secure multimedia communications, existing encryption techniques use an online session key for the key exchange, for which key size is limited to less than 10 digits to accommodate the latency condition caused by user devices only being able to handle low computational loads. This condition results in poor security of recorded encrypted data. In this letter, we propose a packet key scheme that encrypts real-time packets using a different key per packet for multimedia applications. Therefore, a key of a relatively small size can provide after-transmission confidentiality to data of a real-time session.

• Journal of Arbitration Studies
• /
• 제27권3호
• /
• pp.3-31
• /
• 2017

Legal tech is commonly considered as the use of software and technology in the process of providing legal services. It is disrupting the method in which legal services are traditionally rendered, and under the buzz word "e-arbitration" also extends to the area of international commercial arbitration. This article aims to give an introduction into the most pertinent issues in "e-arbitration", starting with an attempt at defining the term "e-arbitration" and with an overview of some of the service providers. It goes on to address the use of information technology in international arbitration and concludes with an analysis of key legal issues arising when various aspects of the arbitral process are commenced, conducted or concluded in digital form.

• Journal of Convergence Society for SMB
• /
• 제4권4호
• /
• pp.19-23
• /
• 2014

Group communication is becoming increasingly popular in Internet applications such as videoconferences, online chatting programs, games, and gambling. For secure communications, the integrity of messages, member authentication, and confidentiality must be provided among group members. To maintain message integrity, all group members use the Group Key (GK) for encrypting and decrypting messages while providing enough security to protect against passive attacks. Tree-based Group Diffie-Hellman (TGDH) is an efficient group key agreement protocol to generate the GK. TGDH assumes all members have an equal computing power. One of the characteristics of distributed computing and grid environments is heterogeneity; the member can be at a workstation, a laptop or even a mobile computer. Member reordering in the TDGH protocol could potentially lead to an improved protocol; such reordering should capture the heterogeneity of the network as well as latency. This research investigates dynamic reordering mechanisms to consider not only the overhead involved but also the scalability of the proposed protocol.

• Journal of Korea Society of Industrial Information Systems
• /
• 제8권4호
• /
• pp.8-16
• /
• 2003

This paper moses a method to solve the weakness in Snort, the network based intrusion detection system. Snort which is the rule-based intrusion detection system dose not supports a protection method for their own rules which are signatures to detect intrusions. Therefore the purpose of this paper is to provide a scheme for protecting rules. The system with the proposed scheme could support integrity and confidentiality to the rules.

• Journal of Korea Society of Industrial Information Systems
• /
• 제13권3호
• /
• pp.54-62
• /
• 2008

For a message hiding technique to be effectual, it needs to have availability, confidentiality and integrity. Steganography is the science of hiding one message within other types of digital contents. In this case, attempt to defeat steganalysis by restoring the statistics of the composite image to resemble that of the cover, these discrepancies expose the fact that hidden communication is happening. In this paper, I present a steganography scheme capable of concealing a piece of secrete information in a host image and base on the technique's OCT, RGB, statistical restoration.

• Journal of the military operations research society of Korea
• /
• 제27권1호
• /
• pp.89-100
• /
• 2001

Information technology has been made remarkable progress and most of computer systems are connected with internet over the world. We have not only advantages to access them easy, but also disadvantages to misuse information, abuse, crack, and damage privacy. We should have safeguards to preserve confidentiality, integrity and availability for our information system. Even tough the security is very important for the defense information system, we should not over limit users availability. BS7799, a British standard, is an evaluation criteria for information security management. In this paper we propose an audit model to manage and audit information security using control items of BS7799, which could be useful to mange the defence information system security. We standardize audit items, and classify them by levels, and degrees by using appropriate audit techniques / methods / processes.

• Korea Journal of Hospital Management
• /
• 제8권2호
• /
• pp.111-129
• /
• 2003

This study discusses the direction of legislation to strengthen the legal protection of medical records privacy in information age. The legislation trends on privacy protection of medical records in European Union and United States are analysed and the current law and regulation of Korea on medical records are compared. The issues discussed include the ownership of medical records, the patient's right of access to medical records, medical information publication for other than treatment or insurance processing use, confidentiality responsibility of provider organizations, medical information management in provider organizations, penalty for the unlawful use of patient information. This study concludes that the patients' right on medical record and provider organization's responsibility in processing patient information should be strengthened in order to protect patients' privacy and to conform to the international standard on medical record protection in the information age.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• 제25권9A호
• /
• pp.1387-1394
• /
• 2000

The SSL(Secure Socket Layer) protocol is one of the mechanism widely used in the recent network system. The improved information security mechanism based on the SSL is designed in this paper. There are important four information security services. The first is the authentication service using the Certificate offered from the SSL(Secure Socket Layer), the second is the message confidentiality service using the DES encryption algorithm, the third is the message integrity service using Hash function, and the fourth is Non-repudiation service. Therefore, information could be transferred securely under the information security mechanism including Non-repudiation service especially designed in this paper.

• The Korean Journal of Emergency Medical Services
• /
• 제21권1호
• /
• pp.7-15
• /
• 2017

Purpose: The purpose of our study was to introduce an oath and ethics code for emergency medical technicians (EMTs). Methods: The proposed oath and ethics code for the EMTs was evaluated using a modified Delphi technique. This oath and ethics code was presented at Korean association of emergency medical technician conference and was revised by experts in emergency medical services. Results: We examined the ethics codes for other allied healthcare professionals regarding the topics of human rights, health promotion, acting as an advocate, ethics, cooperation, observance, human rights, right to know, self-determination, confidentiality, and professionalism. These elements are reflected in our proposed oath and ethics code for EMTs. Conclusion: The proposed oath and ethics code would raise the professional status of EMTs.

• The Transactions of The Korean Institute of Electrical Engineers
• /
• 제61권8호
• /
• pp.1186-1192
• /
• 2012

In Jeju Smart Grid field test, Zigbee technology is being used as one of customer side solutions for AMI. Although Zigbee networks that provides effective connectivity and control among devices are advantages in ease of implementation and use, the data can be exposed to cyber attacks such as eavesdrop, unauthorized data dissemination and forgery. Currently authentication and confidentiality services are provided with the network and link keys generated based on public key pairs that are pre-installed in offline. However, the network is vulnerable once a hacker intrudes into a local network because operation and management policies for the generated keys are not well-established yet. In this paper, the vulnerability of the Zigbee security system in the customer side environment of Jeju Smart Grid field test is analyzed. Then, two-way authentication with the unique identifiers of devices and user-specific group management policies are proposed to resolve the vulnerability.