• Korean Security Journal
• /
• no.17
• /
• pp.69-89
• /
• 2008

As year passes, terrorism is gradually increasing. Its target has becom various and arbitary, and recently, terrorists are aiming for national major facilities wich include multiplex facilities. Although special security guards took charge of its defence system from 2002, they have failed to establish its system firmly due to some institutional inertia. And 'Professionalism' appeared to be the mattter, according to the spot-probe and interviews. The purpose of this essay is to devise measures to develop sepecial security system including its specialization through investigating current educational training system. In order to attain professionalism, establishment of new proffessional school, division of current education system(into common education and full-course education), and reinforcement of substantial inspection activity should be preceded. Moreover, inspection activity should include standards for engaging instructors, establishment of compilation committee for editorial supervision, and establishment of clear educational policy. I hope the developmental measures in this essay to be speedily actualized with endeavor from police, security association, academic circles.

• The monthly packaging world
• /
• s.266
• /
• pp.78-84
• /
• 2015

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.32 no.2
• /
• pp.213-225
• /
• 2022

Containerization, a lightweight virtualization technology, enables agile deployments of enterprise-scale microservices in modern cloud environments. However, containerization also opens a new window for adversaries who aim to disrupt the cloud environments. Since microservices are composed of multiple containers connected through a virtual network, a single compromised container can carry out network-level attacks to hijack its neighboring containers. While existing solutions protect containers against such attacks by using network access controls, they still have severe limitations in terms of performance. More specifically, they significantly degrade network performance when processing packet payloads for L7 access controls (e.g., HTTP). To address this problem, we present BPFast, an eBPF/XDP-based payload inspection system for containers. BPFast inspects headers and payloads of packets at a kernel-level without any user-level components. We evaluate a prototype of BPFast on a Kubernetes environment. Our results show that BPFast outperforms state-of-the-art solutions by up to 7x in network latency and throughput.

• Journal of Korean Society of Disaster and Security
• /
• v.15 no.4
• /
• pp.11-20
• /
• 2022

The general non-destructive inspection method for anchor bolts in Korea applies visual inspection and hammering inspection, but it is difficult to check corrosion or fatigue cracks of anchor bolts in the part included in the foundation or in the part where the nut and base plate are installed. In reality, objective investigation is difficult because inspection is affected by the surrounding environment and individual differences, so it is necessary to develop non-destructive inspection technology that can quantitatively estimate these defects. Inspection of the anchor bolts of domestic road facilities is carried out by visual inspection, and since the importance of anchor bolts such as bridge bearings and fall prevention facilities is high, the life span of bridges is extended through preventive maintenance by developing non-destructive testing technology along with existing inspection methods. Through the development of this technology, non-destructive testing of anchor bolts is performed and as a technology capable of preemptive/active maintenance of anchor bolts for road facilities, practical use is urgently needed. In this paper, the possibility of detecting defects in anchor bolts such as corrosion and cracks and reliability were experimentally verified by applying the ultrasonic test among non-destructive inspection techniques. When the technology development is completed, it is expected that it will be possible to realize preemptive/active maintenance of anchor bolts by securing source technology for improving inspection reliability.

• THE INTERNATIONAL COMMERCE & LAW REVIEW
• /
• v.37
• /
• pp.217-250
• /
• 2008

The International Ship and Port Facility Security (ISPS) Code which was developed as the main response of the shipping sector to the miserable event of 11 September 2001 came into effect on 1 July 2004. The ISPS Code designed to detect and eliminate security threats affecting ships and port facilities used in international trade will significantly impact not only on the management and operation of the shipping industry but also on maritime law despite the fact that it is the regulatory framework of public law. It is expected that implementing the ISPS Code will contribute to reinforcement of maritime security on the one hand. However, on the other hand, more intensified security inspection and control measures of port states will also cause delay and additional costs which cause uncertainty in allocating security risk and cost between the contracting parties. Therefore, it is desire to insert new security clause dealing with main security issues or adapt existing clauses to new shipping environments to minimize disputes.

• The KIPS Transactions:PartC
• /
• v.16C no.4
• /
• pp.417-422
• /
• 2009

Implementation of DPI(Deep Packet Inspection) system on a general purpose multiprocessor platform is an attractive option from the implementation cost point of view, since it does not require high-cost customized hardware. Load balancing has been considered as a primary means to achieve high performance in multi processor systems. We claim, however, that in case of DPI system design simply balancing the load of each processor does not necessarily yield the highest system performance. Instead, we propose a method in which tasks are allocated to processors based on their functions. We implemented the proposed method in dual processor Linux system and compare its performance with the existing load balancing methods. Under the proposed method, one processor is dedicated to deal with interrupt handling and generic packet processing, while another processor is dedicated to DPI processing. According to experimental results, the proposed scheme outperforms the existing schemes by 60%, mainly because of the reduction of cache miss and spin lock occurrences.

• Journal of the Korea institute for structural maintenance and inspection
• /
• v.6 no.3
• /
• pp.103-110
• /
• 2002

Maintenance monitoring of the tunnel which offers continuous data during and after tunneling has been applying to tunnels in order to meet the maintenance of tunnel and to confirm continuous security of the tunnel after tunneling. But, the maintenance monitoring of tunnel results for long period is not easy to find, and moreover, the rational analysis method on tunnel monitoring has not been established yet. In this study, the relationships between displacement and stress of the tunnel concrete lining using various analysis methods are compared with maintenance monitoring. The tunnel behavior were measured in the subway tunnel passing comparative soft the weathering and analyzed both security and mechanical characteristics of the tunnel concrete lining. Also, analyzed relationship between residual water pressure applied on tunnel design and one obtained by monitoring.

• Journal of Platform Technology
• /
• v.11 no.4
• /
• pp.35-49
• /
• 2023

Recently, real-time cyber threats are constantly occurring for various reasons. Most companies have the characteristic of digitizing important internal information and storing it centrally, so it can be said that the impact is very high when an Computer Security Incident occurs. All electronic device information collected and analyzed in the process of responding to an Computer Security Incident has the characteristic of being subject to change at any time. Submission of related evidence is required in future investigations and courts. At this time, the basic principles of digital forensics, such as the principle of integrity and the principle of chain of custody, must be followed to ensure legitimacy and accuracy of the evidence. In this paper, we propose a digital forensic-based Computer Security Incident Inspection and Response procedure in the Windows 10 environment to secure the legitimacy and accuracy of digital evidence collected and analyzed when an intrusion occurs, prevent intrusion in advance, and quickly recognize it.

• Journal of Korean Society of Disaster and Security
• /
• v.15 no.4
• /
• pp.21-30
• /
• 2022

After the collapse of the Seongsu Bridge in 1994, the ｢Special Act on the Safety Control and Maintenance of Establishments｣ was enacted in Korea, and many efforts have been made in the field of safety inspection and maintenance of facilities. Among these facilities, a total of 33,165 bridges, which account for the largest share next to buildings, are currently in use, and 28,150 bridges of type 2 and 3 account for about 85% of the total. However, compared to the relatively more important type 1 bridges, type 2 and 3 bridges, which occupy most of the bridges, have insufficient maintenance status regarding inspection and diagnosis. This reason appears in the subjective judgment and records of the inspection performer when performing inspection and diagnosis of bridges, and in the inspection and diagnosis report form that has not been systematically established. Therefore, in this study, we intend to derive an improvement (draft) of the inspection and diagnosis report that can be systematically and continuously utilized by correcting and supplementing the problems of the existing inspection and diagnosis report.

• Journal of Digital Convergence
• /
• v.10 no.4
• /
• pp.235-241
• /
• 2012

To improve educational excellence and quality, academies carry forward integrative security model related to academic affairs including personal information. This paper proposes an integrative security model for academic affairs database, which guarantees DBMS access control, confidentiality, integrity, and security inspection. This proposed model considered that most academies can't make good use of data security product and suggests a detailed measure to realize the confidentiality based on the function of DBMS.