• 디지털산업정보학회논문지
• /
• 제6권2호
• /
• pp.233-245
• /
• 2010

This paper proposes security architecture, security audit framework, and audit check item. These are based on the security requirement that has been researched in the information system audit. The proposed information security architecture is built in a way that it could defend a cyber attack. According to its life cycle, it considers a security service and security control that is required by the information system. It is mapped in a way that it can control the security technology and security environment. As a result, an audit framework of the information system is presented based on the security requirement and security architecture. The standard checkpoints of security audit are of the highest level. It was applied to the system introduction for the next generation of D stock and D life insurance company. Also, it was applied to the human resources information system of K institution and was verified. Before applying to institutions, system developers and administrators were educated about their awareness about security so that they can follow guidelines of a developer security. As a result, the systemic security problems were decreased by more than eighty percent.

• 디지털산업정보학회논문지
• /
• 제10권3호
• /
• pp.151-159
• /
• 2014

Recently, spread of large amount Smartphones made users to download location-based service applications, which provided by application developers. These location-based service applications are convenient tool for users. Location-based service use technology to find location of user and provide information of user's location. Leakage of information of user's location and expose of privacy life raised new controversy. In this thesis, it will analyze relations of increase of Smartphone market, usage of Location-based service and severity of personal information leakage. Also, it will analyze examples of user's case of damage which caused by leakage personal information and find solutions to reduce damage of personal information leakage. In research, it will find cases of damage that cause by Location-based service. Also it will analyze and research cases of damage and present with graph and chart. In conclusion, to reduce and prevent from damage which caused by leakage personal information, it is important that users and application developers to realize danger of private and personal information leakage. Also, user's personal information must deal with cautiously and application developers have to research and develop the application with powerful security.

• International Journal of Computer Science & Network Security
• /
• 제23권8호
• /
• pp.199-203
• /
• 2023

Influential trend that widely reflected the software engineering industry is service oriented architecture. Vendors are migrating towards cloud environment to benefit their organization. Companies usually offer products and services with a goal to solve problems at customer end. Because customers are more interested in solution of their problem rather than focusing on products or services. In software industry the approach in which customers' problems are solved by providing services is known as software as a service. However, software development life cycle encounters enormous changes when migrating software from product model to service model. Enough research has been done on the overall development process but a limited work has been done on the factors that influence requirements elicitation process. This paper focuses on those changes that influence requirement elicitation process and proposes a systematic methodology for transformation of software from product to service model in a successful manner. The paper then elaborates the benefits that inherently come along with elicitation process in cloud environment. The paper also describes the problems during transformation. The paper concludes that requirement engineering process turn out to be more profitable after transformation of traditional software from product to service model.

• 한국산업융합학회 논문집
• /
• 제27권2_2호
• /
• pp.343-356
• /
• 2024

Super app is an application that provides a variety of services in a unified interface within a single platform. With the acceleration of digital transformation, super apps are becoming more prevalent. This study aims to suggest service enhancement measures by analyzing the user review data before and after the transition to a super app. To this end, user review data from a payment-based super app(Shinhan Play) were collected and studied via topic modeling. Moreover, a matrix for assessing the importance and usefulness of topics is introduced, which relies on the eigenvector centrality of the inter-topic network obtained through topic modeling and the number of review recommendations. This allowed us to identify and categorize topics with high utility and impact. Prior to the transition, the factors contributing to user satisfaction included 'payment service,' 'additional service,' and 'improvement.' Following the transition, user satisfaction was associated with 'payment service' and 'integrated UX.' Conversely, dissatisfaction factors before the transition encompassed issues related to 'signup/installation,' 'payment error/response,' 'security authentication,' and 'security error.' Following the transition, user dissatisfaction arose from concerns regarding 'update/error response' and 'UX/UI.' The research results are expected to be used as a basis for establishing strategies to strengthen service competitiveness by making super app services more user-oriented.

• 디지털산업정보학회논문지
• /
• 제11권2호
• /
• pp.67-72
• /
• 2015

As new Information technology such as IoT develops rapidly, a lot of changes are occurred in our lives. The Internet of Things is the network of physical objects or things embedded with electronics, software, sensors and connectivity to enable it to achieve greater value and service by exchanging data with the manufacturer, operator and/or other connected devices. This change is also applied to tourism industry. These days many people make a tour reservation using the internet. But it is required to consider the efficiency and security of tour reservation system. In this paper, we suggest a tour reservation system. First, we describe the computer reservation system, hotel reservation system and reservation system. Second, we perform the modeling of general reservation system and suggested reservation system. Third, performance evaluation is carried out with respect to efficiency and security. The results show that the suggested reservation system has a better performance than a general reservation system. At last we described the results and future works.

• 해양환경안전학회지
• /
• 제19권1호
• /
• pp.45-51
• /
• 2013

해상 및 해안에서 공경비를 보조하고 민간경비수요에 부응하는 고품질 경비서비스를 제공할 수 있는 민간경비제도 도입을 위한 기초연구로 육상 민간경비업의 현황과 경비지도사 제도를 분석하였다. 또한 해양민간경비 대상영역 탐색과 해양경비 현황분석을 통하여 해양영역에 민간경비서비스 제도의 도입 필요성 및 해양경비의 특수성과 전문성을 도출하였다. 이를 바탕으로 해양경비 현장에서 중추적인 역할과 업무를 담당할 해양경비사 제도를 제안하고 효과적인 해양경비업무 수행에 필요한 해양경비사 자격 조건과 선발시험 과목을 구성하였으며, 경비현장의 실무능력 향상을 위한 교육 프로그램을 설계하였다. 해양경비법에 해양경비업 조항 신설을 제안하여 해양경찰이 해양민간경비를 감독하고 관리함으로써 공경비와 사경비의 시너지 효과 창출은 물론 해양경비산업의 건전한 발전과 국제경쟁력을 갖출 수 있는 기반을 마련하였다.

• 지식경영연구
• /
• 제11권1호
• /
• pp.1-17
• /
• 2010

As information technology had shown tremendous development in late 20th century, various service opportunities appeared in many industries. Also, new types of service are becoming available such as, reservation, teleconsultation, telemedicine. In health care industry, in which, many hospitals are faced operational difficulties and competing impetuously, a web site has become a effective tool to attract patients and transfer tremendous health information to the patients. This study is based on many previous researches on online service quality, try to figure out e-service quality factors of health information sites, and the factors' effect on users' satisfaction on the web site via providing knowledge and trust on the web site. As a result, usability, site aesthetic, responsiveness and security are the 4 factors to measure e-service quality of health information web site. All factors except site aesthetic have significant effects on providing knowledge, security only effects on trust on the web site.

• 시큐리티연구
• /
• 제16호
• /
• pp.81-99
• /
• 2008

한국의 민간경비는 법 제도적 장치와 양적 성장에도 불구하고 최근 사건 사고의 발생으로 사회적으로 큰 충격을 안겨주고 있는 등 양적 성장에 비해, 질적인 성장은 크게 미치지 못하고 있다. 특히 지난 2월 숭례문 방화사건으로 국가 주요시설물과 문화재 등에 대한 경비문제가 부각됐으며, 국민의 생명과 재산을 지키기 위해서는 현재와 같은 치안체계에서는 국민 대다수가 요구하는 치안서비스에 경찰이 적절히 대응하지 못하는 사례가 빈번히 발생하게 되면서 치안수요자들은 부족한 치안력을 보완하기 위한 방법으로 민간경비를 활용하고 있다. 치안력 보완을 위해 민간경비업체가 성행하고 있지만 이러한 민간경비업체의 성행과 더불어 일부 대형 경비업체를 제외하고 상당수 경비업체가 영세성에서 벗어나지 못하고 있으며, 일부 문제 있는 영세업체에서는 자질이 부족한 인력을 고용하여 문제가 발생하는 등 인력관리의 문제와 더불어 불법행위도 저지르고 있어 사회적으로 불신을 받고 있는 등 대책마련이 시급하다는 지적이다. 따라서 본 연구에서는 인력관리의 중요성에 대한 깊은 인식과 더불어 인적자원 확보관리에 대한 개선방안을 다음과 같이 제시하였다. 첫째, 인력자원의 선발 채용시스템의 기준을 강화할 필요가 있다. 둘째, 우수한 인적자원의 확보로 안전서비스의 질적 향상을 유도하여야 하며, 셋째, 효율적인 승진관리의 운영으로 조직구성원들에 대한 사기앙양이다. 넷째, 우수인력 유입을 위한 전문자격제도의 도입이 필요하다.

• 융합보안논문지
• /
• 제16권5호
• /
• pp.49-55
• /
• 2016

최근 국내외적으로 모바일 서비스 산업은 매우 빠른 속도로 변화하고 성장해 나가고 있다. 본 논문에서는, 모바일 서비스 산업에서 일어나고 있는 변화와 미래 범세계적 사회에서의 발생 가능한 모바일 서비스 환경에서의 구조적 보안 취약성을 찾기 위해 노력하였다. 최근 정보통신기술의 급속한 발달로 모바일 인터넷을 이용한 모바일 전자상거래 사용자가 폭발적으로 증가하고, 유선에서 유/무선 통합 환경으로 변화함에 따라, 보안상의 많은 문제점이 노출되고 있다. 특히 모바일 전자상거래에서는 무선 환경의 제한적 특징에 따라 경량화된 보안기술, 종단간 보안 기술 및 프라이버시 보안 등에 관한 연구가 활발하게 진행되고 있다. 또한 IoT 서비스의 확산에 따른 모바일 네트워크에서의 IoT 서비스 연동이 요구되고 있다. 모바일 보안 프로토콜은 무선과 유선을 연계하는 게이트웨이(Gateway)에서 전달되는 데이터의 모든 내용이 누출되는 보안상의 취약점이 있어 종단간 보안도 제공하지 못하는 단점이 있다. 이에 본 논문에서는 모바일 서비스 네트워크를 구성하고 있는 제반 요소의 구조를 살펴본 후, 이로부터 유추할 수 있는 보안 취약성을 제시해 보고자 한다.

• 한국IT서비스학회지
• /
• 제14권4호
• /
• pp.221-236
• /
• 2015

Application software is delivered to customers as a form of service at cloud environment. A cloud service provider is a marketplace between supply side (application providers) and demand side (customers). Cloud service providers have to validate applications to be included in their service portfolio. Not only performance, security, networking, compliances should be checked but also business contract, authentication should be provided. Organization customers are more sensitive to these validation criteria and process. We study the Internet2 NET+, which is a successful cloud marketplace of applications for research and education organizations. This case study shows us three things : (i) a cloud marketplace's application management process : selection, validation, transition to service, customization of applications (ii) what a cloud marketplace has for its infrastructure like authentication, security, access control etc. (iii) what a cloud marketplace has as its governance structure. This case study will provide informative analysis of Internet2 NET, a profit-making vertical and buyer's marketplace (education industry). And we will get some strategic implications for planning and implementing cloud marketplaces.