• 상하수도학회지
• /
• 제32권2호
• /
• pp.193-200
• /
• 2018

Owing to the development in information and communications technologies have improved the technology for high-speed transmission of massive data, which has changed closed-circuit television (CCTV) video transmission technology. In particular, digitization of the CCTV video format and streaming technology has made it possible to minimize transmission loss and integrate video transmission and camera control(pan/tilt). It has also become possible to provide additional services like remote emergency warning broadcasting with just Internet Protocol (IP). However, because of the structural problems of IP, these changes have also brought about the threat of hacking of CCTV monitoring systems. In this study, we propose a methode to optimize network management by examining cases of enhancement of operational efficiency and security by improving the structure of CCTV monitoring network.

• 정보보호학회논문지
• /
• 제22권2호
• /
• pp.295-316
• /
• 2012

최근 정보화 사회에서 사이버 정보 보호는 가장 중요한 분야로 대두 되고 있는 가운데 전문적인 정보 보호 인력에 대한 수요는 전 세계적으로 빠르게 증가 하고 있다. 전문적이고 능력 있는 정보 기술 인력의 보유는 정보화 사회에서 향후 경쟁력과 리더십을 얻는데 매우 중요한 이슈이다. 본 연구는 대학에서 정보 보호와 관련한 전공을 선택한 학생들을 중심으로 어떠한 요인들이 그들의 전공선택과 향후 정보보안과 관련한 직업을 선택하게 하는데 영향을 미치는 지를 분석 하였다. 문헌 고찰을 통해 학생들이 전공 선택과 직업선택에 관한 영향을 미칠 수 있는 대표적인 요인들을 도출하고 이 요인들과 학생들의 전공 및 직업선택과의 관계를 실증적으로 검증 하였다. 본 연구의 연구 결과는 향후 우리 사회가 보다 우수하고 전문적인 정보 보호 인력을 양성하고 유지하는 데에 기여 할 수 있을 것이다.

• Journal of Information Technology Applications and Management
• /
• 제20권1호
• /
• pp.149-171
• /
• 2013

The purpose of this study is to investigate factors influencing Chinese consumers' intention to adopt Smartphones. This paper examines Smartphone characteristics factors (situational dependence, diversity and security) and consumer personality characteristics (innovation, self-efficacy and familarity) based on the Technology Acceptance Model. The 320 sets of data are tested against the model using SEM (structural equation model). The research results reveal that diversity and security have significant influences on both perceived usefulness and perceived playfulness. According to the data analysis, self-efficacy affects only perceived easy of use, and familiarity positively affects perceived easy of use, usefulness and playfulness. This study finds that perceived easy of use and perceived usefulness have positive influences on behavioral intention to adopt Smartphones, and situational dependence and innovation directly affect the behavioral intention. The perceived cost has a negative impact on the behavioral intention. Research results are discussed, and limitations of the current study and future research are presented.

• 경영정보학연구
• /
• 제19권3호
• /
• pp.201-228
• /
• 2017

정보자산에 심각한 피해를 입힐 수 있는 보안 취약점 정보는 상품으로서 가치를 갖게 되었으며 취약점마켓이 형성되었다. 이러한 보안 취약점 정보는 심각성과 중요도에 따라 취약점마켓에서 수백 달러부터 수십만 달러로 거래되고 있으며 종류와 범위는 다양해지고 있다. 본 연구는 취약점마켓과 해커에 관한 선행연구를 토대로 보안 연구자의 취약점 연구동기와 취약점마켓 이용의도에 영향을 미치는 요인에 대한 실증 분석을 실시하였다. 연구결과는 다음과 같다. 첫째, 취약점 연구 자기효능감은 몰입, 화이트마켓 이용의도, 블랙마켓 이용의도에 유의한 영향을 미치고 인지된 이익에는 유의한 영향을 미치지 않았다. 둘째, 몰입은 인지된 이익과 블랙마켓 이용의도에 유의한 영향을 미쳤으나 화이트마켓 이용의도에는 유의한 영향을 미치지 않았다. 셋째, 인지된 이익은 화이트마켓 이용의도와 블랙마켓 이용의도에 모두 유의한 영향을 미쳤다. 넷째, 취약점 연구 자기효능감은 몰입을 매개로 인지된 이익에 유의한 영향을 미쳤다. 다섯째, 몰입은 인지된 이익을 매개로 화이트마켓 이용의도와 블랙마켓 이용의도에 모두 유의한 영향을 미쳤다. 본 연구는 취약점 연구경험이 있는 보안 연구자의 행동 예측에 활용될 수 있을 것이다.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제16권2호
• /
• pp.587-608
• /
• 2022

The European Union recently established the General Data Protection Regulation (GDPR) for secure data use and personal information protection. Inspired by this, South Korea revised their Personal Information Protection Act, the Act on Promotion of Information and Communications Network Utilization and Information Protection, and the Credit Information Use and Protection Act, collectively known as the "Three Data Bills," which prescribe safe personal information use based on pseudonymous data processing. Based on these bills, the personal data store (PDS) has received attention because it utilizes the MyData service, which actively manages and controls personal information based on the approval of individuals, and it practically ensures their rights to informational self-determination. Various types of PDS models have been developed by several countries (e.g., the US, Europe, and Japan) and global platform firms. The South Korean government has now initiated MyData service projects for personal information use in the financial field, focusing on personal credit information management. There is also a need to verify the efficacy of this service in diverse fields (e.g., medical). However, despite the increased attention, existing MyData models and frameworks do not satisfy security requirements of ensured traceability, transparency, and distributed authentication for personal information use. This study analyzes primary PDS models and compares them to an internationally standardized framework for personal information security with guidelines on MyData so that a proper PDS model can be proposed for South Korea.

• International Journal of Computer Science & Network Security
• /
• 제23권12호
• /
• pp.1-12
• /
• 2023

Ensuring the security of Supervisory Control and Data Acquisition (SCADA) and Industrial Control Systems (ICS) is paramount to safeguarding the reliability and safety of critical infrastructure. This paper addresses the significant threat posed by reconnaissance attacks on SCADA/ICS networks and presents an innovative methodology for enhancing their protection. The proposed approach strategically employs imbalance dataset handling techniques, ensemble methods, and feature engineering to enhance the resilience of SCADA/ICS systems. Experimentation and analysis demonstrate the compelling efficacy of our strategy, as evidenced by excellent model performance characterized by good precision, recall, and a commendably low false negative (FN). The practical utility of our approach is underscored through the evaluation of real-world SCADA/ICS datasets, showcasing superior performance compared to existing methods in a comparative analysis. Moreover, the integration of feature augmentation is revealed to significantly enhance detection capabilities. This research contributes to advancing the security posture of SCADA/ICS environments, addressing a critical imperative in the face of evolving cyber threats.

• 한국정보처리학회:학술대회논문집
• /
• 한국정보처리학회 2024년도 춘계학술발표대회
• /
• pp.235-238
• /
• 2024

This paper investigates the integration of ARIA cryptography within hardware secure modules to bolster IoT security. We present a comparative analysis of two prominent IoT communication protocols, MQTT and LwM2M, augmented with ARIA cryptography. The study evaluates their performance, security, and scalability in practical IoT applications. Our experimental setup comprises FPGA-enabled hardware secure modules interfaced with Raspberry Pi acting as an MQTT and LwM2M client. We utilize the Mosquitto MQTT server and an LwM2M server deployed on AWS IoT. Through rigorous experimentation, we measure various performance metrics, including latency, throughput, and resource utilization. Additionally, security aspects are scrutinized, assessing the resilience of each protocol against common IoT security threats. Our findings highlight the efficacy of ARIA cryptography in bolstering IoT security and reveal insights into the comparative strengths and weaknesses of MQTT and LwM2M protocols. These results contribute to the development of robust and secure IoT systems, paving the way for future research in this domain.

• 중소기업융합학회논문지
• /
• 제4권3호
• /
• pp.7-13
• /
• 2014

최근에는 정보보호 관련 컴플라이언스 요구에 의한 정보보호 관리체계는 선택의 문제가 아니라 필수 문제로 대두되고 있다. 이러한 측면에서 직원들이 정보보호 정책을 준수하려는 의도에 영향을 미치는 선행 요인들이 어떤 것이 있는지 연구하고, 향후 이 내용을 적용하여 직원들이 정보보호정책 준수 의도를 높일 수 있는 방안을 제시하고자 한다. 본 논문에서 정보보호정책 준수의도에 미치는 요인을 알아보기 위해 확증적차원(confirmatory)에서 구조방정식에 사용되는 부분최소자승법(Partial Least Square:PLS)을 이용한 1차 요인분석과 마지막으로 2차 요인분석을 하였다. 연구 결과 연구 모형에 대한 가설 검증 결과 총 8개중 채택 7개, 기각 1개로 나타났으며, 대다수 영향요인이 정보보호정책 준수의도에 직접적인 영향을 미치나 자기효능감은 영향을 미치지 않는 것으로 나타났다.

• Asia pacific journal of information systems
• /
• 제32권4호
• /
• pp.857-889
• /
• 2022

Home theft and burglary are prevalent in Dhaka city. Internet of things (IoT), in contrast, is commonly recognized as among the most advanced home security systems. However, the factors that attract young people to use IoT for household security have yet to be examined. Consequently, the purpose of this article is to validate the attitude-social influence-self-efficacy (ASE) model with personal innovativeness and perceived trust. We collected data from Dhaka citizens aged 15 to 24 using a purposive sample technique and 370 valid responses were chosen for the study. According to the analysis, all of our proposed hypotheses were found significant with a 73.6% variance. Furthermore, the effects of attitude and social influence were shown to be the highest and lowest, respectively, and trust and innovativeness were both nearly strong main predictors of ASE. Significantly, since this is one of the few studies in the technology adoption domain using this model, a solid foundation for IoT adoption for security purposes is established.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제6권10호
• /
• pp.2708-2730
• /
• 2012

The growing concern for the protection of personal information has made it critical to implement effective technologies for privacy and data management. By observing the limitations of existing approaches, we found that there is an urgent need for a flexible, privacy-aware system that is able to meet the privacy preservation needs at both the role levels and the personal levels. We proposed a conceptual system that considered these two requirements: a graph-based, access control model to safeguard patient privacy. We present a case study of the healthcare field in this paper. While our model was tested in the field of healthcare, it is generic and can be adapted to use in other fields. The proof-of-concept demos were also provided with the aim of valuating the efficacy of our system. In the end, based on the hospital scenarios, we present the experimental results to demonstrate the performance of our system, and we also compared those results to existing privacy-aware systems. As a result, we ensured a high quality of medical care service by preserving patient privacy.