• 정보보호학회논문지
• /
• 제29권2호
• /
• pp.431-438
• /
• 2019

파일리스 악성코드는 악성 행위를 수행할 페이로드의 흔적을 은닉하기 위해 메모리 주입 공격을 이용한다. 메모리 주입 공격 중 프로세스 할로윙이라는 이름의 공격은 시스템 프로세스 등을 일시정지 상태로 생성시킨 다음, 해당 프로세스에 악성 페이로드를 주입시켜 정상 프로세스인 것처럼 위장해 악성행위를 수행하는 방법이다. 본 논문은 프로세스 할로윙 공격이 발생했을 경우, 악성 행위 실제 수행 여부와 상관없이 메모리 주입 여부를 검출할 수 있는 방법을 제안한다. 메모리 주입이 의심되는 프로세스와 동일한 실행 조건을 갖는 복제 프로세스를 실행시키고, 각 프로세스 가상 메모리 영역에 속해있는 데이터 집합을 퍼지 해시를 이용해 비교한 다음 유사도를 산출한다.

• 전기전자학회논문지
• /
• 제26권3호
• /
• pp.389-395
• /
• 2022

기술의 진화와 함께, 사이버 물리 시스템(Cyber Physical System)은 향상되고 있고 이에 따라 새로운 유형의 사이버 공격도 발견되고 있다. 사이버 공격에는 여러 가지 형태가 있으며 모든 사이버 공격은 대상 시스템을 조작하기 위해 이루어진다. 사이버 물리시스템 중 대표적인 시스템이 사이버 물리 전력 시스템, 즉 스마트 그리드이다. 스마트 그리드는 신뢰할 수 있고 안전하며 효율적인 에너지 전송 및 분배를 제공하는 새로운 유형의 전력망이다. 본 논문에서는 스마트 그리드의 상태 추정과 에너지 분배를 타깃으로 하는 허위 데이터 주입 공격(False Data Injection Attack)으로 잘 알려진 특정 유형의 사이버 공격 구성 방법과 이러한 공격의 방어를 위한 보호 전략과 탐지를 위한 동적 모니터링 기법을 소개한다.

• Design & Manufacturing
• /
• 제17권3호
• /
• pp.34-40
• /
• 2023

In this study, real-time collection of mold vibration signals during injection molding processes was achieved through IoT devices installed on the mold surface. To analyze changes in the collected vibration signals, injection molding was performed under six different process conditions. Analysis of the mold vibration signals according to process conditions revealed distinct trends and patterns. Based on this result, cosine similarity was applied to compare pattern changes in the mold vibration signals. The similarity in time and acceleration vector space between the collected data was analyzed. The results showed that under identical conditions for all six process settings, the cosine similarity remained around 0.92±0.07. However, when different process conditions were applied, the cosine similarity decreased to the range of 0.47±0.07. Based on these results, a cosine similarity threshold of 0.60~0.70 was established. When applied to the analysis of mold vibration signals, it was possible to determine whether the molding process was stable or whether variations had occurred due to changes in process conditions. This establishes the potential use of cosine similarity based on mold vibration signals in future applications for real-time monitoring of molding process changes and anomaly detection.

• 분석과학
• /
• 제33권1호
• /
• pp.42-48
• /
• 2020

Bromate is a disinfection by-product generated mainly from the oxidation of bromide during the ozonation and disinfection process in order to remove pathogenic microorganism of drinking water, and classified as a possible human carcinogen by International Agency for Research of Cancer (IARC) and World Health Organization (WHO). For the purpose of determining the trace level concentration of bromate, several sensitive techniques are applied mostly based on suppressed conductivity detection and UV/Visible detection after postcolumn reaction (PCR). In this study, the suppressed conductivity detection method and the PCR-UV/Visible detection method through the triiodide reaction were compared to analyze the trace bromate in water samples and estimated for the availability of these analytical methods. In addtion, the state-of-the-art techniques was applied for the determination of trace level bromate in various water matrices, i.e., soft drinking water, hard drinking water, mineral water, swimming pool water, and raw water. In comparison of two analytical methods, it was found that the conductivity detection had the suitable advantage to simultaneously analyze bromate and inorganic anions, however, the bromate might not be precisely quantified due to the matrix effect especially by chloride ion. On the other hand, the trace bromate was analyzed effectively by the method of PCR-UV/Visible detection through triiodide reaction to satisfactorily minimize the matrix interference of chloride ion in various water samples, showing the good linearity and reproducibility. Furthermore, the method detection limit (MDL) and recovery were 0.161 ㎍/L and 101.0-108.1 %, respectively, with a better availability compared to conductivity detection.

• 한국동물번식학회:학술대회논문집
• /
• 한국동물번식학회 2001년도 춘계학술발표대회
• /
• pp.53-53
• /
• 2001

Two trials were conducted in a commercial dairy farm on heifer synchronization with PGF$_2$ $\alpha$. Animals showing estrus following the first injection were bred and animals not showing estrus were given the second injection 10 days later. In the first trial, the injection sites were rump and rump. In the second trial, the injection sites were rump and shoulder. Estrous detection was peformed 24 h after injection. Animals were bred by the same technician. In the first trial, the response rate for the first injection was 51.4% and the subsequent pregnancy rate of these animals was 60.0%. The response rate in the second injection was 57.1% and the pregnancy rate was 50.0%. In the second trial, the response rate in the first injection on the rump was 48.7% and the subsequent pregnancy rate was 70.6%. The second injection was given on the shoulder and the response rate was 60.0% and the subsequent pregnancy rate was 25.0%. The data suggests that the site of PGF2 $\alpha$ administration was critical to achieve success in estrous synchronization and pregnancy rates.

• 한국의학물리학회지:의학물리
• /
• 제17권1호
• /
• pp.32-39
• /
• 2006

CT 검사에서 조영제의 혈관외유출을 예방하기 위해 EDA시스템을 증폭기, ADC, 스트레인 게이지로 구성하여 개발하였고, 스트레인 게이지의 신호의 수치를 나타내도록 프로그램을 설계하였다. 신호비율은 500/1000 sec, 분해능 값은 0에서 4,096범위로 표시하고, 입력범위 $0{\sim}5$ V이다. 혈관외유출 검출 문턱 값은 50으로 하였고, 10 간격으로 조정하도록 하였다. 개발된 EDA 시스템을 성인 50명을 대상으로 적용하였다. 2명의 환자에서 혈관외유출이 검출되었고, 조영제 주입속도는 2.0 mL/sec, 2.5 mL/sec, 압력은 137 psi, 158 psi, 혈관외유출된 조영제 용량은 22 mL, 25 mL였다. 설정된 주입 조영제에 비해 20% 정도의 적은 용량이 혈관외유출되었다. 개발된 EDA 시스템은 소량의 조영제를 검출하여 혈관외유출을 예방하는 효과가 있다.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제15권6호
• /
• pp.2168-2187
• /
• 2021

The smart grid replaces the traditional power structure with information inventiveness that contributes to a new physical structure. In such a field, malicious information injection can potentially lead to extreme results. Incorrect, FDI attacks will never be identified by typical residual techniques for false data identification. Most of the work on the detection of FDI attacks is based on the linearized power system model DC and does not detect attacks from the AC model. Also, the overwhelming majority of current FDIA recognition approaches focus on FDIA, whilst significant injection location data cannot be achieved. Building on the continuous developments in deep learning, we propose a Deep Learning based Locational Detection technique to continuously recognize the specific areas of FDIA. In the development area solver gap happiness is a False Data Detector (FDD) that incorporates a Convolutional Neural Network (CNN). The FDD is established enough to catch the fake information. As a multi-label classifier, the following CNN is utilized to evaluate the irregularity and cooccurrence dependency of power flow calculations due to the possible attacks. There are no earlier statistical assumptions in the architecture proposed, as they are "model-free." It is also "cost-accommodating" since it does not alter the current FDD framework and it is only several microseconds on a household computer during the identification procedure. We have shown that ANN-MLP, SVM-RBF, and CNN can conduct locational detection under different noise and attack circumstances through broad experience in IEEE 14, 30, 57, and 118 bus systems. Moreover, the multi-name classification method used successfully improves the precision of the present identification.

• 전기전자학회논문지
• /
• 제26권3호
• /
• pp.380-388
• /
• 2022

전통적인 악성코드 탐지 기술은 알려진 악성코드를 수집하고 특성을 분석한 후, 분석된 정보를 블랙리스트로 생성하고, 이를 기반으로 시스템 내의 프로그램들을 검사하여 악성코드 여부를 판별한다. 그러나 이러한 접근 방법은 알려진 악성코드의 탐지에는 효과적일 수 있으나 알려지지 않았거나 기존 악성코드의 변종에 대해서는 효과적으로 대응하기 어렵다. 또한, 시스템 내의 모든 프로그램을 감시하기 때문에 시스템의 성능을 저하시킬 수 있다. 이러한 문제점들을 해결하기 위하여 악성코드의 주요 행위를 분석하고 대응하기 위한 다양한 방안들이 제안되고 있다. 랜섬웨어는 사용자의 파일에 접근하여 암호화한다. 이러한 동작특성을 이용하여 시스템의 사용자 파일에 접근하는 정상적인 프로그램들을 화이트리스트로 관리하고 파일 접근을 제어하는 방안이 제안되었다. 그러나 화이트리스트에 등록된 정상 프로그램에 DLL(Dynamic-Link Library) 삽입 공격을 수행하여 악성 행위를 수행하게 할 수 있다는 문제점이 지적되었다. 본 논문에서는 화이트리스트 기반 접근통제 기술이 이러한 DLL 삽입 공격에 효과적으로 대응할 수 있는 방안을 제안한다.

• 소성∙가공
• /
• 제15권9호
• /
• pp.667-672
• /
• 2006

Agglutination is one of the most commonly employed reactions in clinical diagnosis. In this paper, we have designed and fabricated nickel mold insert for injection molding of a microfluidic lab-on-a-chip for the purpose of the efficient detection of agglutination. In the presented microfluidic lab-on-a-chip, two inlets for sample blood and reagent, flow guiding microchannels, improved serpentine laminating micromixer(ISLM) and reaction microwells are fully integrated. The ISLM, recently developed by our group, can highly improve mixing of the sample blood and reagent in the microchannel, thereby enhancing reaction of agglutinogens and agglutinins. The reaction microwell was designed to contain large volume of about $25{\mu}l$ of the mixture of sample blood and reagent. The result of agglutination in the reaction microwell could be determined by means of the level of the light transmission. To achieve the cost-effectiveness, the microfluidic lab-on-a-chip was realized by the injection molding of COC(cyclic olefin copolymer) and thermal bonding of two injection molded COC substrates. To define microfeatures in the microfluidic lab-on-a-chip precisely, the nickel mold inserts of lab-on-a-chip for the injection molding were fabricated by combining the UV photolithography with a negative photoresist SU-8 and the nickel electroplating process. The microfluidic lab-on-a-chip developed in this study could be applied to various clinical diagnosis based on agglutination.

• 한국진공학회:학술대회논문집
• /
• 한국진공학회 2009년도 제37회 하계학술대회 초록집
• /
• pp.54-54
• /
• 2009