• The KIPS Transactions:PartC
• /
• v.9C no.5
• /
• pp.775-782
• /
• 2002

This paper introduces Policy Management Tool which was implemented based on Policy Information Model in network suity system. Network security system consists of policy terror managing and sending policies to keep a specific domain from attackers and policy clients detecting and responding intrusion by using policies that policy server sends. Policies exchanged between policy server and policy client are saved in database in the form of directory through LDAP by using Policy Management Tool based on network security policy information model. NSPIM is an extended policy information model of IETF's PCIM and PCIMe, which enables network administrator to describe network security policies. Policy Management Tool based on NSPIM provides not only policy management function but also editing function using reusable object, automatic generation function of object name and blocking policy, and other convenient functions to user.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.34 no.2
• /
• pp.347-363
• /
• 2024

As the number of cyberattacks against the National Critical Information Infrastructure (NCII) is steadily increasing, many countries are strengthening the protection of National Critical Information Infrastructure (NCII) through the enactment and revision of related policies and legal systems. Therefore, this paper selects countries such as the United States, the United Kingdom, Japan, Germany, and Australia, which have established National Critical Information Infrastructure (NCII) protection systems, and compares and analyzes the promotion system of each country's National Critical Information Infrastructure (NCII) protection policy. This paper compares the National Critical Information Infrastructure (NCII) protection system of each country with the cybersecurity system and analyzes the promotion structure. Based on the policy model theory, which is a modification of Allison's theory and Nakamura & Smallwood's theory, this paper analyzes the model of each country's promotion system from the perspective of policy-making and policy-execution. The United States, Japan, Germany, and Australia's policy-promotion model is a system-strengthening model in which both policy-making and policy-execution are organized around the protection of the National Critical Information Infrastructure (NCII), while the United Kingdom and South Korea's policy-promotion model is an execution-oriented model that focuses more on policy-execution.

• Journal of Information Technology Services
• /
• v.6 no.2
• /
• pp.177-188
• /
• 2007

Policy-based Network Management (PBNM) has been presented as a paradigm for efficient and customizable management systems. The approach chosen is based on PBNM systems, which are a promising and novel approach to network management. These systems have the potential to improve the automation of network management processes. The Internet Engineering Task Force (IETF) has also used policy concepts and provided a framework to describe the concept as the Policy Core Information Model (PCIM) and its extensions. There are policy conflicts among the policies that are defined as the policy information model and they are not easily and effectively detected and resolved. In this paper, we present the brief description of PBNM and illustrate the concepts of policy core information model and its policy implementation for a network security. Especially we describe our framework for detecting and resolving the policy conflicts for network security.

• Journal of the Korean Society for Library and Information Science
• /
• v.49 no.1
• /
• pp.247-278
• /
• 2015

The aim of this study was to develop a policy information mentoring management model through which professional information, knowledge, and ideas can be shared and consulted. To this end, we analyzed domestic and international related literature, case studies of domestic and international mentoring programs, and expert advice from the policy consumers and current policy mentors in the field of policy information. In this research, components of a policy information mentoring management model have been proposed by separating them into human and content components. Mentor-mentee coordination, and supervisors are proposed as human components. Policy mentoring subject areas, programs, and detailed activities are proposed as content components.

• Journal of Digital Convergence
• /
• v.14 no.4
• /
• pp.209-220
• /
• 2016

Although organizations are providing information security policy, education and support to guide their employees in security policy compliance, accidents by non-compliance is still a never ending problem to organizations. This study investigates the factors that influence employees' information security policy compliance behavior using elements of Triandis model. We analyzed the relationships among Triandis model's factors using PLS(Partial Least Squares). The result of the hypothesis tests shows that organization can induce individual's information security policy compliance intention and behavior by information security policy and facilitating conditions that support it, and proves the importance of members' expected value, habit and affect about information security compliance. This study is significant in a way that it applies Triandis model in the field of information security, and presents direction for members' information security behavior, and will be able to provide measures to establish organization's information security policy and increase members' compliance behavior.

• Journal of the Korean Society for Library and Information Science
• /
• v.47 no.3
• /
• pp.139-160
• /
• 2013

Ten Web sites from educational policy authorities, educational research institutions, professional educational, and national libraries that provide educational policy information services are investigated using content analysis method. They are analyzed using various types of information sources, classification schemes, and functions of information retrieval. Standardization of classification scheme of educational policy information, standardization of meta data items, improvement of retrieval systems, provision of personalized information services to educational policy authorities, operation of specialized policy information centers, and cooperation among professional institutions are suggested. A model of a specialized educational policy information center is proposed.

• Journal of the Korean Operations Research and Management Science Society
• /
• v.16 no.1
• /
• pp.135-146
• /
• 1991

This paper shows the infinite horizon model of Partially Observable Markov Decision Process with lagged information. The lagged information is uncertain delayed observation of the process under control. Even though the optimal policy of the model exists, finding the optimal policy is very time consuming. Thus, the aim of this study is to find an .eplison.-optimal stationary policy minimizing the expected discounted total cost of the model. .EPSILON.- optimal policy is found by using a modified version of the well known policy iteration algorithm. The modification focuses to the value determination routine of the algorithm. Some properties of the approximation functions for the expected discounted cost of a stationary policy are presented. The expected discounted cost of a stationary policy is approximated based on these properties. A numerical example is also shown.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.13 no.5
• /
• pp.57-67
• /
• 2003

Security Policy Model is a structured representation using informal, semiformal or formal method of security policy to be enforced by TOE. It provides TOE to get an assurance to mitigate security flaws resulted from inconsistency between security functional requirements and functional specifications. Therefore, Security Policy Model has been required under an hish evaluation assurance level on an evaluation criteria such as ISO/IEC 15408(Common Criteria, CC). In this paper, we present an evaluation method for security policy model based on assurance requirements for security policy model in Common Criteria through an analysis of concepts, related researches and assurance requirements for security policy model.

• Journal of the Korean BIBLIA Society for library and Information Science
• /
• v.24 no.3
• /
• pp.217-236
• /
• 2013

As the information needs in civil society is getting diverse, the interest in local policy process based on the characteristics of local communities, especially in local policy implementation is growing. However, research in library and information policy has focused rather on policy alternatives than policy process in Korea. In this study, we analyze the policy implementation in "the First Library in my Life" policy in Kyeonggi province with the framework of the Street-Level Bureaucracy Model by Michael Lipsky. In the analysis, we attempt to identify factors in the policy implementation, to examine the usefulness of the model into the situation of Korean library policy, and to suggest major considerations in the policy implementation in Korean public libraries for successful policy implementation. From the results, the usefulness of the model is examined and the need of considering indirect socio-economic factors is suggested.

• Journal of the Korean BIBLIA Society for library and Information Science
• /
• v.34 no.2
• /
• pp.159-182
• /
• 2023

The National Library of Korea (Sejong), which was launched in December 2013, has been in the spotlight as a specialized library for Korean policy information and as a Sejong city complex cultural facility. Nevertheless, the essential identity, organizational status, division of affairs and core competencies, policy information collection, and services of the NLK (Sejong) are weak and inadequate. Therefore, this study developed a job model for establishing an essential identity and providing high-quality policy information services nationwide and suggested a strategic organizational reorganization plan. The job model was proposed as a total of 110 by adding 38 to the existing 72. Based on this job model, the short-term reorganization model (2023-2024) changed the grade of the library director from the current grade 4 (administrative officer) to Senior Executive, and the grade of the director by division from grade 5 (secretary) to grade 4. The sub-organization has expanded the current 3 divisions (planning management, policy information, and service use) to 4 divisions (planning administration, library collection and development, policy information service, and public service and culture, with a total of 51 personnel. In the mid-to-long-term model (2025-2032), the sub-organization was expanded to 4 divisions and 1 office (planning administration, library collection and development, policy information service, public service and culture, and policy information research), and presented a total of 61 personnel. To this end, it is necessary to persuade stakeholders with the argument of advocating the Korean policy information center, which is a macro-strategic goal, and focus all capabilities on strategic reorganization and revision of 「Decree on the Organization of the Ministry of Culture, Sports and Tourism」.