• Title/Summary/Keyword: safety and security management

Search Result 740, Processing Time 0.033 seconds

A Study on the Information System Security Audit Method for Personal Information Protection (개인정보보호를 위한 정보시스템 보안감사 방법에 관한 연구)

  • Lee, Dong-Nyuk;Park, Jeong-Sun
    • Journal of the Korea Safety Management & Science
    • /
    • v.12 no.4
    • /
    • pp.107-116
    • /
    • 2010
  • To give a solution to solve personal information problems issued in this study, the domestic and overseas cases about information security management system including an authentication technique are analyzed. To preserve the outflow of personal information, which is such a major issue all over the world, a new security audit check list is also proposed. We hope this study to help information system developers construct and operate confidential information systems through the three steps: Analysis of risk factors that expose personal information, Proposal to solve the problem, Verification of audit checking items.

A Study of Asset and Risk Assessment for Established of Industrial Security Management System (산업보안 경영시스템 구축을 위한 자산 및 위험평가에 관한 연구)

  • Koh, Joon-Cheol;Kim, Tae-Soo;Joo, Yong-Ma;Kim, Woo-Hyun;Kang, Kyung-Sik
    • Journal of the Korea Safety Management & Science
    • /
    • v.12 no.4
    • /
    • pp.1-11
    • /
    • 2010
  • The purpose of this study is, by recognizing that recently, as crimes using information and various adverse-effect phenomena such as hacking and virus occur frequently with rapid development of information network such as Internet in every field of industry, the range of security is widening to the field of industrial areas for preventing the leaking of industrial technology and protecting that technology as well as information security only limited to IT area, and by establishing common concept about industrial security through education on the industrial security at the point of increasing importance of industrial security, to prepare the base of comprehensive risk management system for protecting company's assets (physical factor, technical factor and managerial factor) safely from the random threats or attacks inside and outside the company through assessment of important assets of the company, evaluation of threats and weak points, and risk assessment by building industrial security management system in order to protect company's information assets and resources which are connected to the existence of the company safely from the threats or attacks from inside or outside the company and to spread stable business activities.

A Study on Improvement Plans of Earthquake Disaster Safety Management in National Industrial Complexes (국가산업단지 지진재난 안전관리 개선방안 연구)

  • Song, Chang Young;Lee, Dae Jin
    • Journal of Korean Society of Disaster and Security
    • /
    • v.13 no.3
    • /
    • pp.1-14
    • /
    • 2020
  • The purpose of this study is to identify the problems of the earthquake disaster safety management in the national industrial complexes and to suggest improvement counter-measure. Literature review for the safety management system of the Korea Industrial Complex Corporation and interview with practitioners was conducted. and Seismic design application survey was conducted on 28 national industrial complexes. In order to improve Earthquake Disaster Safety Management, Counter-measures were suggested such as the reinforcement of laws and regulations related Seismic. It is expected that the improvement counter-measures presented in this study can be used as policy-making data for improving the seismic performance of the national industrial complexes in the future.

Information Security Management System on Cloud Computing Service (클라우드 컴퓨팅 서비스에 관한 정보보호관리체계)

  • Shin, Kyoung-A;Lee, Sang-Jin
    • Journal of the Korea Institute of Information Security & Cryptology
    • /
    • v.22 no.1
    • /
    • pp.155-167
    • /
    • 2012
  • Cloud computing service is a next generation IT service which has pay-per-use billing model and supports elastically provisioning IT infra according to user demand. However it has many potential threats originating from outsourcing/supporting service structure that customers 'outsource' their own data and provider 'supports' infra, platform, application services, the complexity of applied technology, resource sharing and compliance with a law, etc. In activation of Cloud service, we need objective assessment standard to ensure safety and reliability which is one of the biggest obstacles to adopt cloud service. So far information security management system has been used as a security standard for a security management and IT operation within an organization. As for Cloud computing service it needs new security management and assessment different from those of the existing in-house IT environment. In this paper, to make a Information Security Management System considering cloud characteristics key components from threat management system are drawn and all control domain of existing information security management system as a control components are included. Especially we designed service security management to support service usage in an on-line self service environment and service contract and business status.

A Study on the Safety Analysis and Safety Improvement of Domestic Small Sized Buildings (국내 소규모 건축물의 현황분석 및 안전성 향상 방안 연구)

  • Kim, Dong-Il;Kang, Hwi-jin
    • Journal of Korean Society of Disaster and Security
    • /
    • v.10 no.2
    • /
    • pp.43-47
    • /
    • 2017
  • There is no safety accident of the class 1 and 2 facilities that have been managed by the 'Special Act on Safety Management of Facilities' in the last 22 years. Safety accidents of the small sized facilities are increasing every year because of the lack of systematic management of the facilities. The government plans to enact a small portion of small sized buildings into the class 3 facilities, enabling them to enact a safety check. In this paper, we analyze the safety management status of the class 3 facilities of buildings and propose a plan for improving the safety of small sized buildings.

The Study on the Private Security Employee' Education and Training System for the Emergency Management (민간경비원의 위기관리 능력 제고를 위한 교육훈련 시스템 개선방안)

  • Park, Dong-Kyun
    • Korean Security Journal
    • /
    • no.15
    • /
    • pp.129-146
    • /
    • 2008
  • When the primary function of private security is to protect lives and property of clients, emergency management should be included in the security service and many countermeasure services should be carried out for that purpose. In theses contexts, private security should develop and maintain a educational program to meet their responsibilities to provide the protection and safety of the clients. Conclusionally, private security industry employers in Korea has not concerned with the importance of training and education by lack of recognition and has been passive about qualified guards. And the authorities supervising and the administrating the guards has not recognized the importance of private security and has neglected the training of the guards. In theses contexts, private security should develop and maintain a educational program of emergency management to meet their responsibilities to provide the protection and safety of the clients.

  • PDF

QoS Guaranteed Secure Network Service Realization using Global User Management Framework (GUMF);Service Security Model for Privacy

  • Choi, Byeong-Cheol;Kim, Kwang-Sik;Seo, Dong-Il
    • 제어로봇시스템학회:학술대회논문집
    • /
    • 2005.06a
    • /
    • pp.1586-1589
    • /
    • 2005
  • GUMF (Global User Management Framework) that is proposed in this research can be applied to next generation network such as BcN (Broadband convergence Network), it is QoS guaranteed security framework for user that can solve present Internet's security vulnerability. GUMF offers anonymity for user of service and use the user's real-name or ID for management of service and it is technology that can realize secure QoS. GUMF needs management framework, UMS (User Management System), VNC (Virtual Network Controller) etc. UMS consists of root UMS in country dimension and Local UMS in each site dimension. VNC is network security equipment including VPN, QoS and security functions etc., and it achieves the QoSS (Quality of Security Service) and CLS(Communication Level Switching) functions. GUMF can offer safety in bandwidth consumption attacks such as worm propagation and DoS/DDoS, IP spoofing attack, and current most attack such as abusing of private information because it can offer the different QoS guaranteed network according to user's grades. User's grades are divided by 4 levels from Level 0 to Level 3, and user's security service level is decided according to level of the private information. Level 3 users that offer bio-information can receive secure network service that privacy is guaranteed. Therefore, GUMF that is proposed in this research can offer profit model to ISP and NSP, and can be utilized by strategy for secure u-Korea realization.

  • PDF

A Study on XML/EDI Security using XML Signature (XML 전자서명을 이용한 XML/EDI보안에 관한 연구)

  • 고규준;정경찬;박정선
    • Journal of the Korea Safety Management & Science
    • /
    • v.4 no.2
    • /
    • pp.135-145
    • /
    • 2002
  • As the Internet spreads rapidly, the industrial structure is changing to a new paradigm. The previous EDI system was asked to be changed and WEB EDI, E-Mail EDI, FTP EDI etc. based on the internet have appeared. Recently, the XML/EDI which is based on XML documents has appeared. EDI system has to assure a safe exchange between senders and receivers. But, the internet has security problems because it uses a open TCP/IP protocol. In this paper, we will propose an XML/EDI system with XML Signature.

The Review of Studies on Safety and Health Management System of the Specialized Construction Company (전문건설업 안전보건경영시스템 동향연구)

  • Kim, Se-hoon;Kang, Hwi-jin
    • Journal of Korean Society of Disaster and Security
    • /
    • v.13 no.1
    • /
    • pp.41-50
    • /
    • 2020
  • The introduction, construction, and operation of the safety and health management system of specialized construction companies have a problem incurred in the cost of introducing and operating the safety system. In addition, it is difficult to establish a virtuous cycle system to build a safety system, obtain a certification, and settle in a harsh environment that does not have technical personnel in construction safety. The purpose of this paper is to investigate and review the literature related to the safety and health management system of the construction industry and to analyze various research trends such as the actual situation. Through this, it is to find ways to improve the safety and health management system level of specialized construction companies that want to build and obtain the safety and health management system of the construction industry and specialized construction companies that are carrying out the post-assessment and extension examination after obtaining the certification.

A Study of Improving Safety Management in Taekwondo Events (태권도 이벤트의 안전관리 개선 방안)

  • Cho, Hyun-Joo;Kim, Doo-Han
    • Korean Security Journal
    • /
    • no.53
    • /
    • pp.231-251
    • /
    • 2017
  • Taekwondo has developed into a global sport that sports 80 million people from 208 countries around the world. Korea is the mother country of Taekwondo, and there are many international Taekwondo events in Korea. As important as the image of Taekwondo contents, it will be operation plan and management for event facilities. In particular, safety management for participants is more important than anything else. In case of Taekwondo where there are many national events, there are many foreign visitors, so safety management in facilities and running programs needs to be important. In this study, we conducted in - depth interviews with experts with a career in Taekwondo events. Based on the in - depth interviews, we analyzed the safety management problems of the international Taekwondo events and suggested improvement directions to overcome them. Based on the results of these researches, the improvement direction of Taekwondo event safety management proposed in the first category is a demand for improving safety and injury related system construction. The second category, the safety improvement of visitors, is to secure professional manpower and secure budgets. Also, what is important in the third category, facility safety area, is the proposal to introduce facility safety certification system.

  • PDF