• Journal of the Korea Society of Computer and Information
• /
• v.23 no.11
• /
• pp.75-84
• /
• 2018

Social engineering attack means to get information of Social engineering attack means to get information of opponent without technical attack or to induce opponent to provide information directly. In particular, social engineering does not approach opponents through technical attacks, so it is difficult to prevent all attacks with high-tech security equipment. Each company plans employee education and social training as a countermeasure to prevent social engineering. However, it is difficult for a security officer to obtain a practical education(training) effect, and it is also difficult to measure it visually. Therefore, to measure the social engineering threat, we use the results of social engineering training result to calculate the risk by system asset and propose a attack graph based probability. The security officer uses the results of social engineering training to analyze the security threats by asset and suggests a framework for quick security response. Through the framework presented in this paper, we measure the qualitative social engineering threats, collect system asset information, and calculate the asset risk to generate probability based attack graphs. As a result, the security officer can graphically monitor the degree of vulnerability of the asset's authority system, asset information and preferences along with social engineering training results. It aims to make it practical for companies to utilize as a key indicator for establishing a systematic security strategy in the enterprise.

• Journal of the Korean Society for Aviation and Aeronautics
• /
• v.29 no.2
• /
• pp.100-105
• /
• 2021

The purpose of this study is to provide in-flight security in situations where aviation security is constantly threatened by the increase in illegal interference in aircraft and the threat of terrorism that still exists. It is to identify legal operational problems such as education and qualification of the original system and to propose improvement measures. To this end, the need for revision based on relevant laws and guidelines such as "Operation Guidelines for In-Flight Security Officers" is to be discussed based on international standards such as ICAO and Federal Air Marshal. The research method was based on interviews with SEMs such as cabin managers, which focused on ensuring the legal status of In-Flight Security Officer, establishing relationships with captains, and improving education and training.

• Korean Security Journal
• /
• no.33
• /
• pp.197-228
• /
• 2012

The private security industry in Korea has rapidly proliferated. While the industry has grown quickly, though, private security officers have recently been implicated in incidents involving violence, demonstrating an urgent need for systematic reform and regulation of private security practices in Korea. Due to its quasi-public service character, the industry also risks losing the public's favor if it is not quickly disciplined and brought under legitimate government regulation: the industry needs professional standards for conduct and qualification for employment of security officers. This paper shares insights for the reform of the Korean private security industry through a study of the licensing and training requirements for private security businesses in the United States, mainly focusing on the Private Security Officer Employment Authorization Act (hereinafter the PSOEAA) and the California system. According to the PSOEAA, aspiring security officers shall submit to a criminal background check (a check of the applicants' criminal records). Applicants' criminal records should include not only felony convictions but also any other moral turpitude offenses (involving dishonesty, false statement, and information on pending cases). The PSOEAA also allows businesses to do background checks of their employees every twelve months, enabling the employers to make sure that their employees remain qualified for their security jobs during their employment. It also must be mentioned that the state of California, for effective management of its private security sector, has established a professional government authority, the Bureau of Security and Investigative Services, a tacit recognition that the private security industry needs to be thoroughly, professionally, and actively managed by a professional government authority. The American system provides a workable model for the Korean private security industry. First, this paper argues that the Korean private security industry should implement a more strict criminal background check system similar to that required by the PSOEAA. Second, it recommends that an independent professional government authority be established to oversee and enforce regulation of Korea's private security industry. Finally, this article suggests that education and training course be implemented to provide both diverse training as well as specialization and phasing.

• Korean Security Journal
• /
• no.13
• /
• pp.529-550
• /
• 2007

In proportion to the increase of public security demand, the private companies advanced continuously every year. However the size of the industry expanded in its quantity, the quality remains the same as before. So it's important to training of the security officers. This study suggest the improvements of training system through the analysis and the review of problems of training and education security officers. To develop our private security industry, we suggest as follows. First, In spite of the training is important, the recognition against security officers training is low, so the improvement is demanded. Second, When selecting the educational institution, it does not reflect the demand and situation of education enough. So there is necessary that selecting the educational institution again, after finishing a demonstration duration. Third, The education contents is general, so there is a necessity of the education which is professionalized. Fourth, In order to improve the ability of the lecturer, we must strengthen the qualification of the lecturer. Fifth, For the development of securities industry, we must found the professional training institution.

• Korean Security Journal
• /
• no.1
• /
• pp.175-208
• /
• 1997

I study the actual condition and the problem of the crime prevention system of two seoul police station. that is operated on the unit of police box, and present the new improvement. Stragic and active is the new crime prevention system that introduces a concept of community oriented policing, the tendency of a developed country police. I present a medium - sized police station where 250${\sim}$300 policemen work. It consist of a patrol division, a community division and a administration support division. The chief of police bears the responsibility only for crime prevention service by concentrating on pure Patrol - centered crime prevention activity and community relation activity. Next I present a police inspector system. The most important on this paper is the community policing officer system that a policeman bears responsibility on district apart from a patrol division and support a police service related community. To be operated these systems effectively, these need to be regulated according to a police distinct, a police purpose and it's demand. Also a scale, function, authority of a existing. Police station must be regulated and the police training must be carried out.

• Journal of Multimedia Information System
• /
• v.7 no.3
• /
• pp.215-220
• /
• 2020

Many state agencies and companies collect personal data for the purpose of providing public services and marketing activities and use it for the benefit and results of the organization. In order to prevent the spread of COVID-19 recently, personal data is being collected to understand the movements of individuals. However, due to the lack of technical and administrative measures and internal controls on collected personal information, errors and leakage of personal data have become a major social issue, and the government is aware of the importance of personal data and is promoting the protection of personal information. However, theory-based training and document-based intrusion prevention training are not effective in improving the capabilities of the privacy officer. This study analyzes the processing steps and types of accidents of personal data managed by the organization and describes measures against personal data leakage and misuse in advance. In particular, using Capture the Flag (CTF) scenarios, an evaluation platform design is proposed to respond to personal data breaches. This design was proposed as a troubleshooting method to apply ISMS-P and ISO29151 indicators to reflect the factors and solutions to personal data operational defects and to make objective measurements.

• Convergence Security Journal
• /
• v.20 no.2
• /
• pp.123-135
• /
• 2020

Since AlphaGo's Match in 2016, there has been a growing calls for artificial intelligence applications in various industries, and research related to it has been actively conducted. The same is true in the military field, and since there has been no weapon system with artificial intelligence so far, effort to implement it are posing a challenge. Meanwhile, AlphaGo Zero, which beat AlphaGo, showed that artificial intelligence's self-training data-based approach can lead to better results than the knowledge-based approach by humans. Taking this point into consideration, this paper proposes to apply Reinforcement Learning, which is the basis of AlphaGo Zero, to the Shipboard Combat System or Combat Management System. This is how an artificial intelligence application to the Shipboard Combat System or Combat Management System that allows the optimal tactical assist with a constant win rate to be recommended to the user, that is, the commanding officer and operation personnel. To this end, the definition of the combat performance of the system, the design plan for the Shipboard Combat System, the mapping with the real system, and the training system are presented to smoothly apply the current operations.

• Journal of the Korean Institute of Navigation
• /
• v.8 no.1
• /
• pp.71-102
• /
• 1984

In Korea, the importance of keeping the see transportation facilities and well-trained maritime officers cannot be overemphasized, because of her geographical location and the national security in terms of both political and economical situations. In this paper, some points are suggested for the development of the nautical education in Korea Maritime University: (1) the strict regimental training should be kept as a vital important part of students life and its program should be designed to provide students with leadership training and experience, and to develope in the qualities of responsibilities for good citizenship and self-discipline to overcome hardwork for careers as leaders in Korea maritime industry. And therefore the dormitory and training vessel as essential parts of the educational facilities should be improved both in quality and quantity, (2) the undergraduate course should be extended to more than 5 years so that accredited baccalaureate curriculum and licensing professional education might be well conducted to meet the requirements to cope with the international competition in the facet of seafarers quality, (3) more enlarging the opportunities of incentive payments for students is required so that better qualified applicants can be admitted, (4) finally, a conjugal maritime officer service system should be put into practice in the foresseable furture so that seafarers might live normal family lives while staying at sea.

• Journal of Korean Society of Disaster and Security
• /
• v.9 no.1
• /
• pp.39-45
• /
• 2016

The disasters in Korea, such as the Sewol Ferry Ship sinking disaster has had problems related to the medical response system, with the problems of emergency medical support team in the site, the cooperation between medical staff and fire department officer at disaster site, field medical support and hospital acceptance of the wounded in trouble, the lack of specific systematic medical response manual. Therefore, from May 2014, when the disaster emergency information center in Central Emergency Medical Center starts, collection, modification and education of scattered preexisting disaster emergency medical manual had appeared as important issues. So, it was necessary to develop the early medical response system to disaster. The correction planning of disaster emergency medical response system by Central Emergency Medical Center included quick response system with the fast medical team operation, but the practical application was not enough. So the researcher and his team developed the first Korean disaster emergency medical response manual and the process of development was documented and arranged with the application by education and training.

• Korean Security Journal
• /
• no.39
• /
• pp.355-386
• /
• 2014

Current business environment asks the fundamental changes about business security. The essences of these changes are that the security management of today's global business is important task of managers and the security practitioner is professional who needs very specialized education and training with business thinking. Rapid process of globalization of global village tore down the business limit that was restricted on the geological areas' limitation. Rapid business environments' change that is driving depends on development of science and technology with globalization needs new paradigm to keep business continuity. With the process of globalization, Korea, which importance is gradually increasing in the national economy, has trade dependent economic system, which keeps power of national economy through trade, so Korean economic tendency is accelerating. To keep competitiveness in global market, new strategy that is different with existing domestic business management is necessary. That is, capacity of coping with outside risk in domestic business management is established in some degree, but business activities in foreign countries faces at numerous unexpected risks that differ from country to country such as difference with the custom, changes of corporate governance etc. To cope with these new risks effectively, new paradigm for business risk is necessary. Especially, flexibility of thinking like new paradigm is necessary to cope with new security risk effectively. To cope with security risk that occurs in the new business environment effectively and competes against international company in global market, company management and members' changes of cognition about security and innovative changes in security policy is necessary. In the basement of these changes, there is expansion of business security tasks, improvement of report line, enhancement of professionalism and status of security officers, variation of hands-on workers and increasing of investment to the security etc.