• Convergence Security Journal
• /
• v.11 no.4
• /
• pp.43-49
• /
• 2011

Web-based health information provides a lot of conveniences, however the security vulnerabilities that appear in the network environment without the risk of exposure in the use of information are growing. Web-based medical information security issues when accessing only the technology advances, without attempting to seek a safe methodology are to increase the threat element. So it is required. to take advantage of web-based information security measures as a web-based access control security mechanism-based design. This paper is based on software architecture, design, ideas and health information systems were designed based on access control security mechanism. The methodologies are to derive a new design procedure, to design architecture and algorithms that make the mechanism functio n. To accomplish this goal, web-based access control for multiple patient information architecture infrastructures is needed. For this software framework to derive features that make the mechanism was derived based on the structure. The proposed system utilizes medical information, medical information when designing an application user retrieves data in real time, while ensuring integration of encrypted information under the access control algorithms, ensuring the safety management system design.

• Journal of Information Science Theory and Practice
• /
• v.2 no.3
• /
• pp.55-65
• /
• 2014

This study investigated the information environment of lecturers in Federal Polytechnic, Offa, Kwara State, Nigeria, in relation to their information seeking behavior, extent of use of the polytechnic library, perceptions of the resources and services of the library, level of awareness and extent of use of the open access model of scholarly communications, as well as the challenges of accessing and using information resources. It adopted the survey research method, using a questionnaire for data collection, while the descriptive statistics method was used to analyse the data, using tabular presentation and simple percentages. From a population of 280 lecturers for the study, a purposive sample of 164 was drawn. The findings showed that the lecturers' information needs are focused on online use; they hardly use the polytechnic library due to their perceptions of the resources and services of the library. They are, to a greater extent, aware of open access initiatives, but do not publish in open access outlets, while various challenges affect their access and use of information resources for teaching and research. A recommendation was made, among others, that the polytechnic management should pay more critical attention to the library especially in the areas of adequate, current and comprehensive collections on all the programmes of the institution, as well as the provision of wireless internet services on the campus through a public-private partnership arrangement.

• Journal of the Korea Society of Computer and Information
• /
• v.20 no.8
• /
• pp.69-75
• /
• 2015

Nowadays, software plays various roles in applications in wide areas. However, the security problems caused by software vulnerabilities increase. So, it is necessary to improve software security and safety in software execution. In this paper, we propose an approach to improve the safety of software execution by managing information used in software through static data access analysis. The approach can detect the exposures of secure data in software execution by analyzing information property and flows through static data access analysis. In this paper, we implemented and experimented the proposed approach with a base language, and verify that the proposed approach can effectively detect the exposures of secure information. The proposed approach can be applied in several areas for improving software safety by analysing vulnerabilities from information flows in software execution.

• Journal of the Korean Society for information Management
• /
• v.22 no.3 s.57
• /
• pp.307-326
• /
• 2005

Open access movement supports the principle that the published output of scientific research should be available to everyone without charge. The term open access is used in the broad context of the wider movement. To achieve the objectives of open access to scholarly journal literature, BOAI(Budapest Open Access Initiative) recommends using two complementary strategies: 'self-archiving' in institutional/disciplinary repositories and 'open access journals.' This study introduces the strategies of open access movements and analyzes the ways to help the cause of open access by academic stakeholders(i.e., researchers, librarians, universities, publishers, foundations, learned societies, and government) from the perspective of two BOAI strategies.

• Journal of the Korean Society for Library and Information Science
• /
• v.44 no.3
• /
• pp.137-154
• /
• 2010

The purpose of this study is to examine the tendency of open access income models in gratis open access journals and fee-based online journals in Korea. This study found that there was no clear difference between two groups and fee-based online journals had several of the same characteristics of open access journals. That is, the societies published fee-based journals have requested APC to authors and additional page charges for the articles with research funding. Also, in case of fee-based online journals, the journals received subsidies from external funding agencies were more than free OA journals. These findings show that fee-based online journals in Korea have a lot of capability to transition to open access journals.

• Journal of the Institute of Electronics and Information Engineers
• /
• v.52 no.3
• /
• pp.48-55
• /
• 2015

This paper studies how to solve a problem caused by M2M terminals sending a few data based on $3^{rd}$ Generation Partnership Project(3GPP) Long Term Evolution-Advanced(LTE-A) system and then it is analyzed, proposed, and introduced into the techniques. Especially, it is introduced solution for the lack of Random Access Channel and an increasing number of latency caused by countless M2M devices. It is proposed the technology for M2M grouping as well as allowable access probability according to user type. As it decreases the number of terminal by grouping M2M devices to try random access at PRACH, it can be reduced collision between Cellular users and M2M devices. So, it is proved that the proposed mechanism can solve the increasing average latency of random access on system coexisting Cellular users and M2M devices through simulations.

• The KIPS Transactions:PartC
• /
• v.10C no.1
• /
• pp.11-16
• /
• 2003

This paper implements Multiple User Authentication System to which the system authenticating with password only has been upgraded. The 4-staged authentication including user ID, password, smart card and access control information, etc. is used at the suggested Multiple User Authentication System. The user authentication system that this paper suggests has been developed based on SecuROS/FreeBSD with the function of access control added to FreeBSD kernel. It provides both the function to limit accost range to the system to each user and the function to check that when inputting important information the demand is the one if the system ; thus, the reliability becomes increased. In the SecuROS/FreeBSD system, MAC and RBAC are being used. So, in the case of users accessing to the system, the Information about the policies of MAC and RBAC to which users would access is used in the authentication. At the time, the access to system if permitted only when the access control information that users demanded satisfies all the access control rules which have been defined In the system.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.16 no.3
• /
• pp.87-99
• /
• 2006

In this paper, we propose a method of conditional access control for encrypted SVC(scalable video coding) bitstream. The main purpose of the proposition is to provide a SVC suitable encryption algorithm and a efficient method for conditional access control using encrypted SVC bitstream. We analyzed requirements for conditional access control of a SVC bitstream. And based on the analysis, we proposed encryption algorithm suitable for SVC bitstream and a method of conditional access control of the encryped bitstream. The proposed conditional access control for encrypted SVC bitstream is performed by bitsream extraction and selective decryption. We verified the usefulness of the proposed method through experiments.

• Proceedings of the Korean Society for Language and Information Conference
• /
• 1995.02a
• /
• pp.249-254
• /
• 1995

• The Journal of Information Systems
• /
• v.28 no.4
• /
• pp.65-103
• /
• 2019

Purpose The purpose of this study is to find out in extent to which the companies in Korea and oversea, which has been subjected by different laws of their country, have guaranteed the personal information rights and have provided proper 'right to access' to the information subjects. Design/methodology/approach This study compared Korean laws with 'General Data Protection Regulation (GDPR)' of EU and 'California Consumer Privacy Act (CCPA)' to check each of the level of 'right to access' guarantee. In terms of the difference in guaranteeing the right, this study compared Korean IT leading companies with US global leading IT companies to find out how much 'right to access' are properly implemented in their policies and functions they provide. Findings The result of the study shows that 'right to access' has not been well guaranteed by Korean law, as it does not provide the right to choose method and medium by information subjects and does not clarify the types of diverse information. This was clearly opposite with the other laws providing the right to choose what method and medium that subjects want with clarifying every types of personal information possible to be more. In addition, 'right to access' has not been well guaranteed by Korean companies in comparison with by the oversea companies which proactively guarantee the right by setting the function enabling subjects to browse their information through their websites or applications.