• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.28 no.6
• /
• pp.1449-1461
• /
• 2018

As the number of software vulnerabilities grows year by year, attacks on software are also taking place a lot. As a result, the security administrator must identify and patch vulnerabilities in the software. However, it is important to prioritize the patches because patches for all vulnerabilities are realistically hard. In this paper, we propose a scoring system that expands the scale of risk assessment metric by taking into consideration attack patterns or weaknesses cause vulnerabilities with the vulnerability information provided by the NIST(National Institute of Standards and Technology). The proposed scoring system is expanded based on the CWSS and uses only public vulnerability information to utilize easily for any company. In this paper, we applied the automated scoring system to software vulnerabilities, and showed the expanded metrics with consideration for influence of attack pattern and weakness are meaningful.

• Journal of Gastric Cancer
• /
• v.22 no.1
• /
• pp.24-34
• /
• 2022

Purpose: Total gastrectomy (TG) with lymph node (LN) dissection is recommended for early gastric cancer (EGC) but is not indicated for endoscopic resection (ER). We aimed to identify patients who could avoid TG by establishing a scoring system for predicting lymph node metastasis (LNM) in proximal EGCs. Materials and Methods: Between January 2003 and December 2017, a total of 1,025 proximal EGC patients who underwent TG with LN dissection were enrolled. Patients who met the absolute ER criteria based on pathological examination were excluded. The pathological risk factors for LNM were determined using univariate and multivariate logistic regression analyses. A scoring system for predicting LNM was developed and applied to the validation group. Results: Of the 1,025 cases, 100 (9.8%) showed positive LNM. Multivariate analysis confirmed the following independent risk factors for LNM: tumor size >2 cm, submucosal invasion, lymphovascular invasion (LVI), and perineural invasion (PNI). A scoring system was created using the four aforementioned variables, and the areas under the receiver operating characteristic curves in both the training (0.85) and validation (0.84) groups indicated excellent discrimination. The probability of LNM in mucosal cancers without LVI or PNI, regardless of size, was <2.9%. Conclusions: Our scoring system involving four variables can predict the probability of LNM in proximal EGC and might be helpful in determining additional treatment plans after ER, functioning as a good indicator of the adequacy of treatments other than TG in high surgical risk patients.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.25 no.4
• /
• pp.921-932
• /
• 2015

We proposed a new scoring system on software vulnerabilities, which calculates quantitatively the severity of software vulnerabilities. The proposed scoring system consists of metrics for vulnerability severity and scoring equations; the metrics are designed to measure the severity of a software vulnerability considering the prevalence of the vulnerability, the risk level of the vulnerability, the domestic market share of the software and the frequency of the software. We applied the proposed scoring system to domestically reported software vulnerabilities, and discussed the effectiveness of the scoring system, comparing it with CVSS and CWSS. We also suggested the prospective utilization areas of the proposed scoring system.

• The Korean Journal of Applied Statistics
• /
• v.18 no.3
• /
• pp.543-553
• /
• 2005

Linear logistic regression is one of the most widely used method for credit scoring in credit risk management. This paper deals with credit scoring using splines based on Logistic regression. Linear splines and an automatic basis selection algorithm are adopted. The final model is an example of the generalized additive model. A simulation using a real data set is used to illustrate the performance of the spline method.

• Proceedings of the Korean Institute of Building Construction Conference
• /
• 2016.05a
• /
• pp.168-169
• /
• 2016

Risk management at an early stage of projects is known as an effective method expected various benefits. The PDRI(Project Definition Rating Index) by the CII(Construction Industry Institute) is defined project scope for reducing risks. In addition, the PDRI is one of the verified methods for achieving benefits by a risk management. The literature review in Korea about risk management is all about focusing on construction works and the construction phase. Thus, we need to extend the perspective of a project management such as the PDRI. To develop the Korean PDRI, However, we have to consider Korean situations. Therefore, in this study, we analyze some previous studies of PDRI' indexes and its using methods, and suggest the new direction for using PDRI in Korea. This method will enable to improve the scoring method of a project management with PDRI in Korea.

• The Korean journal of helicobacter and upper gastrointestinal research
• /
• v.18 no.4
• /
• pp.225-230
• /
• 2018

Upper gastrointestinal (GI) bleeding (UGIB) is the most common GI emergency, and it is associated with significant morbidity and mortality. Early identification of low-risk patients suitable for outpatient management has the potential to reduce unnecessary costs, and prompt triage of high-risk patients could allow appropriate intervention and minimize morbidity and mortality. Several risk-scoring systems have been developed to predict the outcomes of UGIB. As each scoring system measures different primary outcome variables, appropriate risk scores must be implemented in clinical practice. The Glasgow-Blatchford score (GBS) should be used to predict the need for interventions such as blood transfusion or endoscopic or surgical treatment. Patients with GBS ${\leq}1$ have a low likelihood of adverse outcomes and can be considered for early discharge. The Rockall score was externally validated and is widely used for prediction of mortality. The recently developed AIMS65 score is easy to calculate and was proposed to predict in-hospital mortality. The Forrest classification is based on endoscopic findings and can be used to stratify patients into high- and low-risk categories in terms of rebleeding and thus is useful in predicting the need for endoscopic hemostasis. Early risk stratification is critical in the management of UGIB and may improve patient outcome and reduce unnecessary health care costs through standardization of care.

• Journal of Korean Society of Occupational and Environmental Hygiene
• /
• v.32 no.3
• /
• pp.253-267
• /
• 2022

Objectives: This study was performed to check whether the CRS (Chemical Ranking and Scoring) system is appropriate as a method to determine substances as candidates for substances subject to permission and to apply this system to the selection of candidates for substances subject to permission. Methods: A risk score was obtained by multiplying the hazard score and the exposure score and then ranking them. The hazard sub-indicators are carcinogenicity, germ cell mutagenicity, reproductive toxicity, specific target organ toxicity-repeated exposure, respiratory sensitization and endocrine disrupting chemicals. Exposure sub-indicators are persistence, bioaccumulation and emission volume. Sensitivity analysis was performed for missing values. Correlation analysis and multivariable linear regression analysis were performed among hazard, exposure and risk in order to confirm that CRS was an appropriate method. Results: As a result of the sensitivity analysis on missing values, it was confirmed that the effect on the risk ranking was not sensitive. Correlation and regression analysis confirmed that exposure had a greater effect on risk than hazard. Conclusions: The CRS system, which derives a risk score using a hazard and exposure score, is judged to be appropriate as a method for the selection of preliminary of candidates for substances subject to permission. Benzene, cadmium, nickel, and cobalt were selected as priority candidates for substances subject to permission.

• Journal of Gastric Cancer
• /
• v.21 no.4
• /
• pp.368-378
• /
• 2021

Purpose: When patients with early gastric cancer (EGC) undergo non-curative endoscopic submucosal dissection requiring gastrectomy (NC-ESD-RG), additional medical resources and expenses are required for surgery. To reduce this burden, predictive model for NC-ESD-RG is required. Materials and Methods: Data from 2,997 patients undergoing ESD for 3,127 forceps biopsy-proven differentiated-type EGCs (2,345 and 782 in training and validation sets, respectively) were reviewed. Using the training set, the logistic stepwise regression analysis determined the independent predictors of NC-ESD-RG (NC-ESD other than cases with lateral resection margin involvement or piecemeal resection as the only non-curative factor). Using these predictors, a risk-scoring system for predicting NC-ESD-RG was developed. Performance of the predictive model was examined internally with the validation set. Results: Rate of NC-ESD-RG was 17.3%. Independent pre-ESD predictors for NC-ESD-RG included moderately differentiated or papillary EGC, large tumor size, proximal tumor location, lesion at greater curvature, elevated or depressed morphology, and presence of ulcers. A risk-score was assigned to each predictor of NC-ESD-RG. The area under the receiver operating characteristic curve for predicting NC-ESD-RG was 0.672 in both training and validation sets. A risk-score of 5 points was the optimal cut-off value for predicting NC-ESD-RG, and the overall accuracy was 72.7%. As the total risk score increased, the predicted risk for NC-ESD-RG increased from 3.8% to 72.6%. Conclusions: We developed and validated a risk-scoring system for predicting NC-ESD-RG based on pre-ESD variables. Our risk-scoring system can facilitate informed consent and decision-making for preoperative treatment selection between ESD and surgery in patients with EGC.

• The Korean Nurse
• /
• v.30 no.3
• /
• pp.49-65
• /
• 1991

This study was carried out to assess the problems with the pregnant women, and check out the risk-factors in the high-risk pregnancies, using a simplified antepartum risk-scoring system, which was revised from Edwards' scoring system to be suitable for Korean situaition. This instrument was included 4 categories, demographic, obstetric, medical and miscellaneous factors. This survey was based on the 1300 pregnant women who were admitted, $x^2$-test, F-test, Pearsons correation, using statistical package SAS in NAS computer system, KIST. The results of the study were as follows; 1. 1313 infants were deliveried of these 560 infants(42.7%) were born to mothers with risk-scores > 7, and 753 infants(57.3%) were born to mothers risk-scores <7. 2. Maternal age" parity, education level, of the demographic factors were significant relation statistically to identify the high risk pregnancies($X^2$=20.88, 42.87, 15.60 P < 0.01). 3. C-section, post term, incompetent cervix, uterine anomaly, polyhydramnios, congenital anomaly, sensitized RH negative, abortion, preeclampsia, excessive size infant, premature, low birth weight infanl, abnormal presentation, perinatal loss, multiple pregnancy, of the obstetric factors were significant relation statistically to identify the high risk-pregnancies. ($X^2$ = 175.96, 87.5, 16.28, 21.78, 9.46, 8. 10, 6.75, 22.9, 64.84, 6.93, 361.43, 185.55, 78.65, 45.52, P < 0.01). 4. Abnormal nutrition, anemia, UTI, other medicalcondition(pulmonary disease, severe influenza), heart disease, V.D., of the miscellaneous and medical factors, were significant relation statistically to identify the high risk-pregnancies. 5. Premature, low birth weight infant, contracted pelvis, abnormal presentation, of the risk factors were significantly related with Apgar score at 1 '||'&'||' 5 minute after birth and neonatal body weight. 6. Apgar score at 1 '||'&'||' 5 minute after, birth and neonatal body weight were significantly negative correlated with risk-score. 7. There were statistically significant difference between risk-score and Apgar score at 1 '||'&'||' 5 minute after birth, 3 group(0-3, 4-6, above 7), and neonatal body weight, 2 group(below 2.5kg, the other group) (F=104.65, 96.61, 284.92, P<0.01). 8. Apgar score at 1 '||'&'||' 5 minute after birth(below 7), and neonatal body weight(below 2.5kg), were significant relation statistically with risk score.($x^2$=65.99, 60.88, 177.07, P<0.01) were 60.8 %, 60% . 9. Correct classifications of morbid infants(l '||'&'||' 5 minute Apgar score < 7) were 77.8%, 83.8% and that of nonmorbid infants(l '||'&'||' 5 minute Apgar score > 7) were 60.8%, 60%. 10. There were statistically significant difference between dislribution of maternal risk-score among the morbid infants(l '||'&'||' 5 minute Apgar score < 7) and non morbid infants(l '||'&'||' 5 minute Apgar score> 7) ($x^2$=64.8, 58.8, P < 0.001). 11. There were statistically significant difference between distribution of morbid infants(l '||'&'||' 5 minute Apgar score < 7) and fetal death. 12. The predictivity for classifying high.risk cases was 12 % and for classifying low-risk cases was 98.3 % in 5 minute Apgar score. Suggestions for further studies are as follows; 1. Contineous prospective studies, using this newly revised scoring system are strongly recommended in the stetric service. 2. Besides risk facto~s used in this study, assessmenl of risks by factors in another scoring system and paralled studies related to perinatal outcome are strongly recommended.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.27 no.1
• /
• pp.87-96
• /
• 2023

As the number of security vulnerabilities increases yearly, security threats continue to occur, and the vulnerability risk is also important. We devise a security threat score calculation reflecting trends to determine the risk of security vulnerabilities. The three stages considered key elements such as attack type, supplier, vulnerability trend, and current attack methods and techniques. First, it reflects the results of checking the relevance of the attack type, supplier, and CVE. Secondly, it considers the characteristics of the topic group and CVE identified through the LDA algorithm by the Jaccard similarity technique. Third, the latest version of the MITER ATT&CK framework attack method, technology trend, and relevance between CVE are considered. We used the data within overseas sites provide reliable security information to review the usability of the proposed final formula CTRS. The scoring formula makes it possible to fast patch and respond to related information by identifying vulnerabilities with high relevance and risk only with some particular phrase.