• Journal of Korean Society of Disaster and Security
• /
• v.13 no.1
• /
• pp.41-50
• /
• 2020

The introduction, construction, and operation of the safety and health management system of specialized construction companies have a problem incurred in the cost of introducing and operating the safety system. In addition, it is difficult to establish a virtuous cycle system to build a safety system, obtain a certification, and settle in a harsh environment that does not have technical personnel in construction safety. The purpose of this paper is to investigate and review the literature related to the safety and health management system of the construction industry and to analyze various research trends such as the actual situation. Through this, it is to find ways to improve the safety and health management system level of specialized construction companies that want to build and obtain the safety and health management system of the construction industry and specialized construction companies that are carrying out the post-assessment and extension examination after obtaining the certification.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2012.05a
• /
• pp.439-441
• /
• 2012

The use of a mobile agent in hospital environment offers an opportunity to deliver better services for patients and staffs. Furthermore, medical errors will be reduced because M-health system helps to verify the medical process. Optimized security protocols and mechanisms are employed for the high performance and security. Finally, a challenge in the near future will be converge the integration of Ubiquitous Sensor Network (USN) with security protocols for applying the hospital environment. We proposed secure authentication and protocol with Mobile Agent for ubiquitous sensor network under healthcare system surroundings.

• Journal of Digital Convergence
• /
• v.12 no.7
• /
• pp.133-145
• /
• 2014

Recently, Hospital information systems have the large databases by wide range offices for hospital management, health care to improve the quality of care. However, hospital information systems for information security measures are insufficient. Therefore, when we construct the hospital information system, we have to audit the information security measures for them, and we have to manage the ISMS(Information Security Management System) to maintain the information protection level through the risk managements. In this paper, we suggested the hospital information security audit model for the protection of health information privacy by the current hospital information systems, information security management system(ISMS), and hospital information security requirements and threats. We derived the check items compared with ISO27799 reflected the characteristics of the hospital. We classified the security domains as the physical, technical, administrative domain, and derived the check items for information security. We also designed the check lists by mapping the ISO27799 risk management process to improve the security and efficiency simultaneously. Our model by the five-point scale survey of IT experts was verified the suitability with the average of 4.91 points.

• Journal of Information Processing Systems
• /
• v.15 no.2
• /
• pp.239-250
• /
• 2019

An individual's health data is very sensitive and private. Such data are usually stored on a private or community owned cloud, where access is not restricted to the owners of that cloud. Anyone within the cloud can access this data. This data may not be read only and multiple parties can make to it. Thus, any unauthorized modification of health-related data will lead to incorrect diagnosis and mistreatment. However, we cannot restrict semipublic access to this data. Existing security mechanisms in e-health systems are competent in dealing with the issues associated with these systems but only up to a certain extent. The indigenous technologies need to be complemented with current and future technologies. We have put forward a method to complement such technologies by incorporating the concept of blockchain to ensure the integrity of data as well as its provenance.

• Journal of Korea Society of Digital Industry and Information Management
• /
• v.14 no.3
• /
• pp.11-20
• /
• 2018

Smart devices refer to various devices and control equipment such as health care devices, imaging devices, motor devices and wearable devices that use wireless network communication (e.g., Wi-fi, Bluetooth, LTE). Commercial services using such devices are found in a wide range of fields, including home networks, health care and medical services, entertainment and toys. Studies on smart devices have also been actively undertaken by academia and industry alike, as the penetration rate of smartphones grew and the technological progress made with the fourth industrial revolution bring about great convenience for users. While services offered through smart devices come with convenience, there is also various security threats that can lead to financial loss or even a loss of life in the case of terrorist attacks. As attacks that are committed through smart devices tend to pick up where attacks based on wireless internet left off, more research is needed on related security topics. As such, this paper seeks to design an access control method for reinforced security for smart devices. After registering and authenticating the smart device from the user's smart phone and service provider, a safe communication protocol is designed. Then to secure the integrity and confidentiality of the communication data, a management process such as for device renewal or cancellation is designed. Safety and security of the existing systems against attacks are also evaluated. In doing so, an improved efficiency by approximately 44% compared to the encryption processing speed of the existing system was verified.

• Korean Journal of Occupational Health Nursing
• /
• v.18 no.1
• /
• pp.106-115
• /
• 2009

Purpose: Occupational stress is a determinant risk factor for cardiovascular disease and work disability. This study aims to describe occupational stress and identify its related factors among aged security guards. Methods: A random sample of 76 aged security guards were interviewed by three research assistants. The criteria of the subjects were as follows : 50 or older male with 40 or more working hours a week working with colleagues ranged from 3 to 50. The data were collected in September, 2007 and analyzed by multiple regression using SAS Version 9.1. Results: The mean score of occupational stress among aged security guards was 47.2. The mean scores of its sub-scales were 31.3(physical environment), 33.8(occupational demand), 80.8occupational control), 44.6(interpersonal conflict), 51.3 (occupational insecurity), 53.6(occupational system), 57.5(lack of reward), and 30.3(work environment). The scores of occupational control, interpersonal conflict, and occupational insecurity were higher than the scores of Korean average occupational stress sub-scales. Significant variables affecting occupational stress and its sub-scales were work place, work type, and employment type. Conclusion: In order to reduce occupational stress among security guards, sufficient occupational control and interpersonal conflict control, appropriate reward, and employment stability should be considered. Also long working hours and work shift should be improved.

• Convergence Security Journal
• /
• v.23 no.1
• /
• pp.79-87
• /
• 2023

Precision Medicine, which utilizes personal health information, genetic information, clinical information, etc., is growing as the next-generation medical industry. In Korea, medical institutions and information communication companies have coll aborated to provide cloud-based Precision Medicine Hospital Information Systems (P-HIS) to about 90 primary medical ins titutions over the past five years, and plan to continue promoting and expanding it to primary and secondary medical insti tutions for the next four years. Precision medicine is directly related to human health and life, making information protecti on and healthcare information protection very important. Therefore, this paper analyzes the preliminary research on inform ation protection models that can be utilized in cloud-based Precision Medicine Hospital Information Systems and ultimately proposes research on ways to improve information protection in P-HIS.

• Convergence Security Journal
• /
• v.16 no.7
• /
• pp.51-59
• /
• 2016

An internal and external threat against an information system has increased, and to reduce it, organization has spent a great deal of money and manpower. However, in spite of such investment, security threat and trouble have happened continuously. Organization has conducted information security activity through various policies. The study classified such activities into prevention-oriented activity and control-oriented activity, and researched how information security activity of organization affects members of an organization and obeys information security policy by using health belief model. As a result of the study, prevention-oriented activity has a meaningful impact on seriousness, and this seriousness affects compliance intention for information security. Control-oriented activity has a meaningful impact on benefits, and the benefits have an effect on compliance intention. When an organization conducts prior activities such as education, PR, and monitoring, this organization should emphasize negative results that can happened because of deviation. In addition, in case of exposure and punishment through post activities such as inspection and punishment, if the organization emphasizes the positive effects of exposure and punishment rather than emphasis of negative parts, information security activity will be more effective.

• Journal of Internet Computing and Services
• /
• v.18 no.6
• /
• pp.75-84
• /
• 2017

As there has been growing interests in PHR-based personalized health management project, various institutions recently explore safe methods of recording personal medical and health information. In particular, innovative medical solution can be realized when medical researchers and medical service institutes can generally get access to patient data. As EMR data is extremely sensitive, there has been no progress in clinical information exchange. Moreover, patients cannot get access to their own health data and exchange it with researchers or service institutions. It can be operated in terms of technology, yet policy environment are affected by state laws as well as Privacy and Security Policy. Blockchain technology-independent, in transaction, and under test-is introduced in the medical industry in order to settle these problems. In other words, medical organizations can grant preliminary approval on patient information exchange by using the safely encrypted and distributed Blockchain ledger and can be managed independently and completely by individuals. More apparently, medical researchers can gain access to information, thereby contributing to the scientific advance in rare diseases or minor groups in the world. In this paper, we focused on how to manage personal medical information and its protective use and proposes medical treatment exchange system for patients based on a permissioned Blockchain network for the safe PHR operation. Trusted Model for Sharing Medical Data (TMSMD), that is proposed model, is based on exchanging information as patients rely on hospitals as well as among hospitals. And introduce medical treatment exchange system for patients based on a permissioned Blockchain network. This system is a model that encrypts and records patients' medical information by using this permissioned Blockchain and further enhances the security due to its restricted counterfeit. This provides service to share medical information uploaded on the permissioned Blockchain to approved users through role-based access control. In addition, this paper presents methods with smart contracts if medical institutions request patient information complying with domestic laws by using the distributed Blockchain ledger and eventually granting preliminary approval for sharing information. This service will provide an independent information transaction and the Blockchain technology under test will be adopted in the medical industry.

• Health Policy and Management
• /
• v.10 no.1
• /
• pp.57-94
• /
• 2000

Korea's social health insurance system was introduced in 1977, which has made a universal coverage possibly by July 1989. Korean government had pursued a single objective for the last decade to put the whole population under the coverage of medical security, and the objective was achieved within 12 years. The rapid accomplishment is primarily due to such factors as limited benefits, high copayment rate, low contributions as well as rapid economic growth. There are several sources of pressure for the implementation of social health insurance such as health professional group, labor unions, politicians, international organizations etc.. However it is important to look at the feasibility of social health insurance. Among other things, it is necessary to identify the administrative infrastructure of insurance system and to assess income for source of fund. As many developed countries, Korea began to apply health insurance to the employees of the large firms, and the expansion based on employment status. Thus the several funds system was inevitable according to the gradual expansion strategy. However many persons had criticized several funds system in respect with equity and efficiency aspects. In the short history of the Korean health insurance, whether one fund or sever or funds had been the most controversial issue. In Febrary 1999, the National Assembly passed the act of one fund system. From July 2000 separate funds will be unifed under new health insurance scheme. In this study we will analyze the policy making process on implementation, expansion and integration of health insurance system of Korea. And also analyse problems related to policy making.