• 제목/요약/키워드: security factors

검색결과 1,970건 처리시간 0.032초

개발 성공요인을 적용한 네트워크 보안 시스템 개선에 관한 연구 (A Study on the Improvement of Network Security Systems Based on Critical Success Factors for Systems Development)

  • 김종선;황경태
    • Journal of Information Technology Applications and Management
    • /
    • 제14권4호
    • /
    • pp.121-138
    • /
    • 2007
  • This study proposes a method to improve network security systems based on critical success factors for systems development. To accomplish the research objective, the study analyzes required functions of network security systems and reviews existing methods to improve network security systems. Based on the analyses and literature review, critical success factors for development of network security systems are identified and a new method to improve network security systems based on the critical success factors is proposed. The proposed method to improve network security systems is based on utilizing multi-core processors. A prototype is developed and validated. This study will provide a good case in the network security area where research incorporating both engineering and management disciplines lacks.

  • PDF

AHP를 이용한 정보보안 요소의 중요도 평가: 국방기관 정보시스템 외주개발 사례 (Assessing the Importance of Information Security Factors Using AHP: Case of Defense Agency's Outsourcing Development of Information Systems)

  • 박동수;윤한성
    • 디지털산업정보학회논문지
    • /
    • 제14권3호
    • /
    • pp.55-68
    • /
    • 2018
  • In this paper, we identify and evaluate the information security factors considered in outsourcing development of information systems for defense agency with analytic hierarchy process(AHP). To assess the information security elements, we prepared three groups including the experts of a defense agency, subcontractor managers and subcontractor practitioners who are involved in developing information systems. And the relative importance of security factors were analyzed using questionnaires and responses. As a result of analysis of 27 security factors, factors corresponding to human and physical security as a whole were evaluated as having higher importance. Although there are some differences in the ranking of some importance according to human roles, they can be positive for the implementation of complementary information security. And administrative security and technical security can be relatively insignificant considering that they can be considered as infrastructure of the overall information environment. The result of this paper will be helpful to recognize the difference of perception of information security factors among the persons in the organization where collaboration is activated and to prepare countermeasures against them.

국가중요시설의 물리적 보안 요인 분석 - 항만보안을 중심으로 - (A Study on Physical Security factors of National Major Facilities - Focussed on Port Security -)

  • 이민형;이정훈
    • 융합보안논문지
    • /
    • 제15권6_2호
    • /
    • pp.45-53
    • /
    • 2015
  • 국가중요시설로서 항만보안에 특화된 물리적 보안요인이 선행적으로 제시되어야 그에 적합한 보안활동이 이루어질 수 있다고 볼 수 있다. 물리적 보안의 개념적 특성에 따라 항만시설 내에서의 그러한 요인이 어떠한가에 대한 이론적 기초자료가 제시되어야 함에도 불구하고 그러한 선행연구는 미비하며, 그에 따라 항만시설의 물리적 보안 요인에 대한 탐색적 연구가 이루어져야 한다. 이를 위한 연구방법으로서 본 연구에서는 델파이 기법을 통하여 전문가 패널의 의견을 수렴하여 이에 대한 필요성과 적합성을 평가하고자 하였다. 3차에 걸친 델파이 조사 분석결과를 살펴보면 제1차 개방형 설문 조사에서 전체 패널들의 의견을 수합한 결과 총 168개 중 응답 빈도수가 2이상인 중복응답 87개만 수렴하여 중복된 항목을 제거 및 수정하여 총 19개의 물리적 보안 요소가 도출되었다. 이를 토대로 제2차 필요성 및 제3차 적합성에 대한 델파이 조사를 통하여 기술통계분석과 내용타당도 분석 결과 3개 영역 12개 요인이 최종 선정되었다.

군(軍) 조직구성원의 보안환경 영향요인이 보안 스트레스와 보안준수행동에 미치는 영향 연구 (A Study on the Effects of Influencing Factors in the Security Environment of Military Organizational Members on Information Security Stress and Security Compliance Behavior Intention)

  • 박의천;전기석
    • 융합보안논문지
    • /
    • 제21권3호
    • /
    • pp.93-104
    • /
    • 2021
  • 오늘날 인공지능과 같은 4차 산업혁명의 발달로 인하여 군 조직의 보안위협이 증대되고 있다. 이렇게 변화하거나 새롭게 등장하는 보안환경 속에서 발생하는 영향요인들이 보안 스트레스와 보안준수행동에 미치는 영향을 연구함으로써 군사보안을 준수하는데 기여될 수 있는 연구가 필요하다. 기존 선행연구에서 보안 스트레스를 유발하는 환경적인 영향요인 중 업무 과중, 업무 복잡성, 업무 불확실성, 업무 갈등을 추출하였다. 이러한 영향요인이 보안 스트레스에 어떠한 영향을 미치는지와 보안 스트레스의 매개역할 여부를 실증적으로 분석하였다. 분석결과, 업무 과중이 보안 스트레스에 통계적으로 유의미하게 정(+)의 영향을 미치는 것으로 나타났다. 보안 스트레스는 업무 과중과 보안준수행동간의 관계를 매개하는 것으로 나타났다. 이는 군 조직에서 과중한 보안업무로 인하여 보안 스트레스가 발생하고, 결국은 보안준수행동이 낮아지는 결과를 초래한다. 따라서 이런 상황을 관리하는 보안정책이 우선 추진되어야 할 것이다.

조직의 정보보안 환경이 조직구성원의 보안 준수의도에 미치는 영향 (The Effect of Organizational Information Security Environment on the Compliance Intention of Employee)

  • 황인호;김대진
    • 한국정보시스템학회지:정보시스템연구
    • /
    • 제25권2호
    • /
    • pp.51-77
    • /
    • 2016
  • Purpose Organizations invest significant portions of their budgets in fortifying information security. Nevertheless, the security threats by employees are still at large. We discuss methods to reduce security threats that are posed by employees in organization. This study finds antecedent factors that increases or decreases employee's compliance intention. Also, the study suggests organizations' security environmental factors which influences the antecedent factors of compliance intention. Design/methodology/approach The structural equation model is then applied in order to verify this research model and hypothesis. Data were collected on 415 employees working in organizations with an implemented information security policy in South Korea. We analyzed the fitness and validity of the research model via confirmatory factor analysis in order to verify the research hypothesis, then we analyzed structural model, and derived the result. Findings The result shows that organizational commitment and peer behavior increase security compliance intention of employees, while security system anxiety decreases compliance intention. And, organization's physical security system and security communication both have influence on antecedent factors for information security compliance of employees. Our findings help organizations to establish information security strategies that enhance employee security compliance intention.

Factors for Better Adoption of Information Security on Custom-Made Software at SMEs: A Systematic Review and Framework

  • Fatimah Alghamdi;Moutasm Tamimi;Nermin Hamza
    • International Journal of Computer Science & Network Security
    • /
    • 제23권2호
    • /
    • pp.65-78
    • /
    • 2023
  • Investigations on information security factors re- main elusive at small and medium enterprises (SMEs), es- specially for custom-made software solutions. This article aims to investigate, classify, adopt factors from recent literature addressing information security resources. SMEs al- ready have information security in place, but they are not easy to adopt through the negotiation processes between the in-house software development companies and custom-made software clients at SMEs. This article proposes a strategic framework for implementing the process of adoption of the information security factors at SMEs after conducting a systematic snapshot approach for investigating and classifying the resources. The systematic snapshot was conducted using a search strategy with inclusion and exclusion criteria to retain 128 final reviewed papers from a large number of papers within the period of 2001-2022. These papers were analyzed based on a classification schema including management, organizational, development, and environmental categories in software development lifecycle (SDLC) phases in order to define new security factors. The reviewed articles addressed research gaps, trends, and common covered evidence-based decisions based on the findings of the systematic mapping. Hence, this paper boosts the broader cooperation between in-house software development companies and their clients to elicit, customize, and adopt the factors based on clients' demands.

소셜 네트워크 서비스의 보안기능 사용의도에 영향을 미치는 요인 : Facebook을 중심으로 (Factors Affecting Intention to Use Security Functions in SNS)

  • 김협;김경규;이호
    • 한국IT서비스학회지
    • /
    • 제13권2호
    • /
    • pp.1-17
    • /
    • 2014
  • Social networking service (SNS) is a service that allows people to share information, manage relationships with others, and express themselves on the Internet. The number of SNS users have increased explosively with the growth of mobile devices such as smartphones. As the influence of SNS has grown extensively, potential threats to privacy have also become pervasive. The purpose of this study is to empirically examine the main factors that affect users' intentions to use security functions provided by their SNS. The main theories for this study include the rational choice theory and the theory of planned behavior. This study has identified the factors that affect intention to use security functions. In addition, security function awareness and information security awareness are found to be important antecedents for intention to use security functions. The results of this study implies that when SNS providers develop security policies, they should consider the ways to improve users information security awareness and security function awareness simultaneously.

비밀문서유통을 위한 보안 요구사항 분석 (The Analysis of the security requirements for a circulation of the classified documents)

  • 이지영;박진섭;강성기
    • 안보군사학연구
    • /
    • 통권1호
    • /
    • pp.361-390
    • /
    • 2003
  • In this paper, we analyze the security requirement for a circulation of the classified documents. During the whole document process phases, including phases of drafting, sending/receiving messages, document approval, storing and saving, reading, examining, out-sending and canceling a document, we catch hold of accompanied threat factors and export every threat factors of security. We also propose an appropriate and correspondent approach for security in a well-prepared way. Last, we present the security guidelines for security architecture of the classified documents circulation.

  • PDF

SET기반 전자상거래의 보안위협요소 분석 및 대응 방안에 관한 연구 (A Study on the Security Vulnerabilities and Defense Mechanism for SET-based Electronic Commerce)

  • 김상균;강성호
    • 한국전자거래학회지
    • /
    • 제4권2호
    • /
    • pp.59-79
    • /
    • 1999
  • In order to construct a successful electronic commerce system, three main essential factors must be satisfied to obtain the best effective outcomes. The three main essential factors are as follows : economic factor, effectiveness factor and convenient factor. In order to understand the role of these three factors, one must have some insight knowledge about security to assist him to implement these three factors in his construction of an electronic commerce system. This paper analyses a implementation mechanism of security systems based on the SET 1.0 standard for electronic commerce systems, thus providing an effective plan for the construction of a security system in the SET-based electronic commerce field. This paper helps to analyse the elements of security vulnerabilities in the SET 1.0 standard implementation and also helps to understand the SET 1.0 protocol.

  • PDF

전사적 보안협업을 위한 핵심성공요인에 관한 연구 (A Study on Critical Success Factors for Enterprise Security Collaboration)

  • 도정민;김정덕
    • 디지털융복합연구
    • /
    • 제12권10호
    • /
    • pp.235-242
    • /
    • 2014
  • 전사적 보안을 위한 요구사항은 점차 커지고 있는 반면, 이를 구현하기 위한 수단 중 하나인 보안협업에 대한 연구는 매우 미흡하다. 따라서 본 논문은 보안협업에 대한 개념 정립을 통해 보안협업의 유형을 분석하고, 효과적 보안협업 수행을 위한 핵심 성공요인들을 파악하고자 한다. 이를 위해 조직관리 분야에서의 기존 연구를 조사 분석하여 보안협업 모델을 정립하였고, 협업에 영향을 미치는 요인 및 보안특성을 반영하여 협업 인력, 협업 프로세스, 협업 환경 등 세 영역에서 여덟 개의 변수를 도출하였다. 본 연구는 경력 3년 이상 보안 및 IT 전문가 106명의 데이터를 수집, PLS-SEM를 사용하여 검증을 하였다. 본 연구의 결과로는 협업 구성원의 신뢰성, 전문성, 참여 동기와 협업 성과기준, 최고경영자의 의지, 협업지원도구 등이 보안협업에 영향을 미치는 요인으로 나타났다.