• Journal of Information Processing Systems
• /
• v.17 no.4
• /
• pp.772-786
• /
• 2021

The process of tracking suspicious behavior manually on a system and gathering evidence are labor-intensive, variable, and experience-dependent. The system logs are the most important sources for evidences in this process. However, in the Microsoft Windows operating system, the action events are irregular and the log structure is difficult to audit. In this paper, we propose a model that overcomes these problems and efficiently analyzes Microsoft Windows logs. The proposed model extracts lists of both common and key events from the Microsoft Windows logs to determine detailed actions. In addition, we show an approach based on the proposed model applied to track illegal file access. The proposed approach employs three-step tracking templates using Elastic Stack as well as key-event, common-event lists and identify event lists, which enables visualization of the data for analysis. Using the three-step model, analysts can adjust the depth of their analysis.

• Journal of the Korean Society for Railway
• /
• v.11 no.3
• /
• pp.342-348
• /
• 2008

This paper defines the Safety Management System (SMS) based on the rail safety act and surveys the status of the English rail SMS and International Civil Aviation Organization (ICAO) SMS and OHSAS18001 SMS. Through the analysis of the domestic rail operators' safety management regulations and the results of the universal rail safety audit, the status and problems of domestic rail operators' SMS are investigated and the improvement scheme are derived. First, to establish the continual improvement system for SMS, the instruction which describe the detailed continual improvement method for each steps of SMS including management review by CEO shall be established. Second, to settle the risk management based SMS, converting the rail operators mind and establishing the supply system of safety risk operating model and basic data for the risk analysis and safety evaluation and including the precise requirement for the risk management in the related instruction should be conducted.

• International Journal of Highway Engineering
• /
• v.13 no.1
• /
• pp.97-105
• /
• 2011

This paper presents how one can investigate the effects on crash occurrence of freeway geometric design elements including the horizontal, vertical alignment and road environment. At present, the available research results for the most part involve geometric data analysis that are obtained along a relatively long section of freeway, and, because of the long section's diverse geometric conditions, the results tend to miss the specific local geometric impacts on vehicle crashes. In this regard, this research attempts to establish vehicle crash models based on a set of freeway geometric patterns whose crash generating characteristics are identical because they are homogeneous in terms of producing the same vehicle operating speeds, and subsequently their actual relationships are described by providing statistical analysis made in this research. Also each standard is comprised of part of straight, curve and continuous curve. This research has revealed that each type of model has different relation between accident and geometry structure. This research results should be useful for doing more reasonable highway designs and safety audit analysis.

• Journal of Food Hygiene and Safety
• /
• v.14 no.1
• /
• pp.104-114
• /
• 1999

This study was conducted to find out the proper ways of implementation of Hazard Analysis Critical Control Point (HACCP) concepts applicable to the current Korean food inspection system. The following recommendations are based on an in-depth review of the Canadian Food Safety Enhancement Program (FSEP), which is one of the leading HACCP programs adapted to the food industry. Since 1997, the HACCP system has been voluntarily applied to meat processing plants in Korea in accordance with the Food Protection Law. But the guidelines are obscure and inadequate to expand to the diversity of food plants, and are therefore only applied to a limited number of plants of small scale enterprise. For these reasons, it is necessary to prepare an enhanced food safety control program focused not only on the HACCP plants but also on the non-HACCP plants. The national program should be the fundamental framework of a food safety control policy enforced by all the relevant authorities. The Prerequiste Program of Canadian Food Inspection Agency and Sanitation Standard Operating Procedures (SSOP) of FSIS are good example programs for the non-HACCP plants. These programs, which are a major part of the HACCP system, could easily be adapted to the Korean food industry. To improve the current HACCP implementation guideline, it is necessary to develop a detailed implementation manual, generic HACCP model, training program, and an audit program.

• Convergence Security Journal
• /
• v.17 no.1
• /
• pp.39-44
• /
• 2017

The existing enterprise information security activities were centered on the information security organization, and the top management considers information security and enterprise management to be separate. However, various kinds of security incidents are constantly occurring. In order to cope with such incidents, it is necessary to protect information in terms of business management, not just information security organization. In this study, we examine the existing corporate governance and IT governance, and present an information security governance model that can reflect the business goals of the enterprise and the goals of the management. The information security governance model proposed in this paper induces the participation of top management from the planning stage and establishes information security goals. We can strengthen information security activities by establishing an information security plan, establishing and operating an information security system, and reporting the results to top management through compliance audit, vulnerability analysis and risk management.

• Health Policy and Management
• /
• v.18 no.2
• /
• pp.19-38
• /
• 2008

Financial ratios are key indicators of an organization's financial and business conditions. Among various financial indicators, profitability, financial structure, financial activity and liquidity ratios are frequently used and analyzed. Using the structural equation modeling(SEM) technique, this study examines the structural causal relationships among key financial indicators. Data for this study are taken from complete financial statements from 142 hospitals that passed the standardization audit undertaken by the Korean Hospital Association from 1998 to 2001 for the purpose of accrediting teaching hospitals. In order to improve comparability, ratio values are standardized using the Blom's normal distribution. The final model of the SEM has four latent constructs: financial activity(total asset turnover, fixed asset turnover), liquidity(current ratio, quick ratio, collection period), financial structure(total debt to equity, long-term debt to equity, fixed assets to fund balance), and profitability(return on assets, normal profit to total assets, operating margin to gross revenue, normal profit to gross revenue). While examining several model fit indices(Chi-square (df) = 178.661 (40), likelihood ratio=4.467, RMR=.11, GFI=.849, RMSEA=.157), the final SEM we employed shows a relatively good fit. After examining the path coefficient of the constructs, the financial structure of the hospital affects the hospital's profitability in a statistically significant way. A hospital which utilizes its liabilities, more specifically fixed liabilities, and makes a stable investment decision for fixed assets was found to have a higher profitability than other hospitals. Then, the standard path coefficients were examined to directly compare the influence of variables. It was found that there were no statistically significant path coefficients among constructs. When it comes to variables, however, statistically significant relationships were found. between. financial activity and. fixed. asset turnover, and between profitability and normal profit to gross revenue. These results show that the observed variables of fixed asset turnover and normal profit to gross revenue can be used as indicators representing financial activity and profitability.

• Journal of Information Technology Services
• /
• v.21 no.4
• /
• pp.63-74
• /
• 2022

Globally researchers at medical institutions are actively sharing COHORT data of patients to develop vaccines and treatments to overcome the COVID-19 crisis. OMOP-CDM, a common data model that efficiently shares medical data research independently operated by individual medical institutions has patient personal information (e.g. PII, PHI). Although PII and PHI are managed and shared indistinguishably through de-identification or anonymization in medical institutions they could not be guaranteed at 100% by complete de-identification and anonymization. For this reason the security of the OMOP-CDM database is important but there is no detailed and specific OMOP-CDM security inspection tool so risk mitigation measures are being taken with a general security inspection tool. This study intends to study and present a model for implementing a tool to check the security vulnerability of OMOP-CDM by analyzing the security guidelines for the US database and security controls of the personal information protection of the NIST. Additionally it intends to verify the implementation feasibility by real field demonstration in an actual 3 hospitals environment. As a result of checking the security status of the test server and the CDM database of the three hospitals in operation, most of the database audit and encryption functions were found to be insufficient. Based on these inspection results it was applied to the optimization study of the complex and time-consuming CDM CSF developed in the "Development of Security Framework Required for CDM-based Distributed Research" task of the Korea Health Industry Promotion Agency. According to several recent newspaper articles, Ramsomware attacks on financially large hospitals are intensifying. Organizations that are currently operating or will operate CDM databases need to install database audits(proofing) and encryption (data protection) that are not provided by the OMOP-CDM database template to prevent attackers from compromising.

• Journal of Korean Society of Transportation
• /
• v.28 no.2
• /
• pp.151-159
• /
• 2010

This paper presents a research result that was performed to develop a more accurate freeway crash prediction model than existing models. While the existing crash models only focus on developing crash relationships associated with highway geometric conditions found on a short section of a crash site, this research applies a different approach considering the upstream highway geometric conditions as well. Theoretically, crashes occur while motorists are in motion, and particularly at freeways vehicle speed at one specific point is very sensitive to upstream geometric conditions. Therefore, this is a reasonable approach. To form the analysis data base, this research gathers the geometric conditions of the West Seaside Freeway 269.3 km and six years crash data ranging 2003-2008 for these freeway sections. As a result, it is found that crashes fit well into Negative Binomial Distribution, and, based on the developed model, total number of crashes is inversely proportional to highway curve length and radius. Contrarily, crash occurrences are proportional to tangent length. This result is different from existing crash study results, and it seems to be resulted from this research assumption that a crash is influenced greatly by upstream geometric conditions. Also, this research provides the expected effects on crash occurrences of the length of downgrade sections, speed camera placements, and the on- and off- ramp presences. It is expected that this research result is useful for doing more reasonable highway designs and safety audit analysis, and applying the same research approach to national roads and other major roads in urban areas is recommended.

• Journal of Korean Society on Water Environment
• /
• v.36 no.6
• /
• pp.546-558
• /
• 2020

While industrialization has provided in abundance, the pollution it creates has caused untold damage to the environment, increasing the frequency and severity of natural disasters through changes in global climate patterns. The World Risk Forum's (WEF) World Risk Report presented the results of a survey of experts from around the world detailing the most influential risk factors over the next decade. Notably, the failure to respond to climate change ranked first and the global water crisis third. The extreme drought in the western Chungnam province was unexpected in 2016. At the time, the water level of Boryeong Dam was drastically decreased due to receiving less than half the average recorded rainfall in the region that year. The Boryeong Dam diversion pipeline has the capacity to solve the water shortage problem between these two regions by providing water from Geumgang to the western part of Chungnam, including Boryeong City. Current weather trends suggest drought is likely to continue in western Chungnam, which uses the Boryeong Dam as an intake source. This makes it necessary to operate Boryeong Dam diversion pipeline in an efficient and effective manner. SWAT is a watershed scale model developed to predict the impact of land management practices on water. The SWAT model was used in this study to evaluate the adequacy of the Boryeong Dam diversion pipeline operational plan by comparing it to present Boryeong Dam diversion pipeline operation. By investigating the number of days required to reach each reservoir stage, we determined that the number of days required to reach the boundary stage was less than that of the current operation. This determination accounts for the caveats that the Boryeong Dam waterway was not operated and only one pump will be operated from October to May of next year. As our results suggest, the most stable operation scenario is to operate two pumps at all times. This can be accomplished by operating two pumps from the caution stage to increase the number of pumps whenever the stage is raised. In addition to the stable operation of the Boryeong Dam pipeline, policy considerations are required with regard to imposing a water use charge on users of the Boryeong Dam region.

• Journal of Distribution Science
• /
• v.12 no.4
• /
• pp.85-92
• /
• 2014

Purpose - This study conducted empirical research on non-financial corporations listed on the stock exchange from 2001 to 2010, focusing on the effects of corporate governance on real earnings management of corporations. In particular, this study examined primarily the impact of the largest shareholder who could use earnings management to pursue his own self-interest, and foreign investors who played a checking role against the largest shareholders. The study also reviewed the relationship between corporate governance and earnings management while also considering corporate growth. Research design, data, and methodology - As for the measurements of real earnings management, abnormal operating cash flow and abnormal production cost were utilized. As for the independent variables, share ratio of the largest shareholder and affiliate person (M) and share ratio of foreign investors (FT) were leveraged. This study excluded those organizations that had changed their fiscal years, those that had not submitted an audit report, corporations under supervision, delisted corporations, corporations that had changed their business type, and so on, from the non-financial corporations out of the publicly traded corporations whose fiscal year ended in December from 2001 to 2010 in addition, KIS values were utilized for the corporate financial data in the study. To verify whether management structure and growth had an impact on real earnings management of a corporation through empirical analysis, a multiple regression analysis model was applied. Result - First, as a result of the analysis, the share ratio (M) of the largest shareholder and affiliate person was found to have a significant positive correlation with abnormal cash flow from operations(ACF) and abnormal production cost (APD). When controlling the growth, the share ratio (M) of the largest shareholder and affiliate person was found to have an insignificant correlation with abnormal cash flow from operations(ACF) but a significant correlation with abnormal production cost (APD). Second, foreign ownership (FT) was found to have a significant positive correlation with abnormal cash flow from operations(ACF) and abnormal production cost (APD) at the confidence level of 1 percent when not including the growth dummy. When controlling the growth, foreign ownership (FT) was found to have a significant negative correlation with abnormal cash flow from operations (ACF) and with abnormal production cost (APD). Conclusion - The results imply that the largest shareholder is closely related to earnings management through real activities regardless of corporate growth. It is also possible to determine from these results that foreign investors are related to earnings management through real activities when not considering corporate growth, but that they would reduce earnings management in the case of considering the growth. Thus, this study verified along with the existing studies that foreign investors were conducting the control function on controlling shareholders.