• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.20 no.6
• /
• pp.127-146
• /
• 2010

This report has continuously improved in Information Security Level of Information Communication Service Companies which are applicable to Information Security Safety Inspection System. Also, it presents a decided methodology after verified propriety and considered the pre-research or expropriation by being developed the way of Information Security Safety Result Measurement. Management territory weighted value was established and it was given according to the point of view and the strategy target and the and outcome index to consider overall to a measurement item. Accordingly, an outome to the Information Security Check Service is analyzed by this paper and measurement model and oucome analysis methodology are shown with this, and gives help to analyze an outcome. Also it make sure the the substantial information security check service will be accomplished, prevent a maintenance accident beforehand and improve an enterprise outcome independently by institutional system performance securement and enterprise.g corporate performance.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.28 no.4
• /
• pp.827-838
• /
• 2018

Since 2014, ease of regulations on financial institutions expanded the mobile payment market based on simple authentication, and this resulted in the emergence of various simple payment services. Although several security solutions have been used to mitigate possible security threats to payment applications, there are vulnerabilities which can still be found due to the structure in which the security solution is applied to the payment service. In this paper, we analyze the payment application and security solution from the process perspective, and prove through experimentation that verification functions of security solutions can be bypassed without detailed analysis of each security function, but by simply manipulating the verification result value. Finally, we propose methods to mitigate the bypass method presented in this paper from three different perspectives, and thereby contribute to the improvement of security level of the payment service.

• Convergence Security Journal
• /
• v.14 no.3_2
• /
• pp.71-81
• /
• 2014

The purpose of this research is to find out the relationship among the quality of service, the satisfaction of service and the satisfaction of life in public security of Police. This research made by Final Judgment based on Seoul Citizens living in Seoul as a focus group, total number of citizens for final analysis is 491. The research consists of 60 questionnaires shows frequency analysis, factor analysis, reliability analysis, multiple regression, path analysis by SPSSWIN 18.0 and reaches the following. The reliability of the survey showed a Cronbach's ${\alpha}$ value of over 0.607. results; First, the quality of service in public security of Police in fluences the satisfaction of service. Second, the quality of service in public security of Police in fluences the satisfaction of life. Third, the satisfaction of service in public security in fluences the satisfaction of life. Fourth, the quality of service in public security of Police in fluences the satisfaction of service in public security and the satisfaction of life directly and indirectly.

• Information Systems Review
• /
• v.14 no.3
• /
• pp.131-141
• /
• 2012

Depending on the sophistication of IT, it is increasing more and more information leaks and breaches. Accordingly the majority of companies have expand investment protection for the information. However, companies still have been exposed the vulnerability of information leakage. Especially, small IT service businesses than large corporations relatively have some limitations in the points of resources and manpower business activities. For studies on information security for small IT service companies so far, however, there have been insufficient studies considering small business scales and business characteristics of IT services. In this study, we made to design an information security management model for establishing security measures of small IT service companies which are classified SI/SM, DB, IR and IP industry that depending on how the value creation of the business. In detail, we performed an empirical analysis for small IT service business to consider business characteristics and we proposed security implementation strategies based on the analysis results.

• Korean Security Journal
• /
• no.62
• /
• pp.321-346
• /
• 2020

The purpose of this study is to identify the relationship among customer access service, internal response, and consumption behavior of security agency users through a structural model. The research will be meaningful in that it can contribute to the development of the security industry by identifying the importance of customer access service, which is an empirical face of buyers using security agency, and thus establishing the relationship between consumer reaction and consumption behavior. The study subject is a store that uses security agency in areas with dense shopping districts in Cheonan and Asan of South Chungcheong Province, where 375 store representatives and employees were selected to conduct the research. Research tools were modified and used to suit the purpose of the research based on domestic and foreign prior research. Using two statistical programs, SPSS 25.0 and AMOS 25.0, data processing was performed: frequency analysis, exploratory factor analysis, reliability analysis, confirmed factor analysis, and structural model analysis. The statistical significance level was analyzed by setting a value of .05 and the following conclusions were obtained. First, the customer access service of security agency users has a positive impact on consumption behavior. Second, the customer access service of security agency users has a positive effect on the internal response. Third, the internal response of security agnecy users has a positive effect on consumption behavior. Fourth, the internal response has a positive effect as a medium effect between customer access service and consumption behavior of security agency users.

• Asia pacific journal of information systems
• /
• v.30 no.2
• /
• pp.328-352
• /
• 2020

If a firm announces an investment in IT security, how the market value of its competitors reacts to the announcement? We try to shed light on this question through an event study design. To test the relationship, we collected 143 announcements on cybersecurity investment and measured the subsequent impact on 533 competitors' abnormal returns, spanning from 2000 to 2019. Our estimation results present that, on average, the announcements have no observable impact on the market value of announcing firms and competitors as well, which is consistent with findings of a prior study. Interestingly, however, the impact becomes evident when we classify our samples by industries (Finance vs. non-Finance or ICT vs. non-ICT) and firm size (Big vs. Small). We interpret our empirical findings through the lenses of contagion effect and competition effect between announcing firms and their competitors. Key finding of our study is that, for financial service firms, the effect resulting from the announcement on cybersecurity investment transfers to competitors in the same direction (i.e., contagion effect).

• The Journal of Society for e-Business Studies
• /
• v.18 no.4
• /
• pp.301-314
• /
• 2013

The existing computer environment, numerous mobile environments and the internet environment make human life easier through the development of IT technology. With the emergence of the mobile and internet environment, data is getting bigger rapidly. From this environment, we can take advantage of using those data as economic assets for organizations which make dreams come true for the emerging Big Data environment and Big Data security services. Nowadays, Big Data services are increasing. However, these Big Data services about Big Data security is insufficient at present. In terms of Big Data security the number of security by Big Data studies are increasing which creates value for Security by Big Data not Security for Big Data. Accordingly in this paper our research will show how security for Big Data can vitalize Big Data service for organizations. In details, this paper derives the priorities of the components of Big Data Information Security Service by AHP.

• Convergence Security Journal
• /
• v.10 no.2
• /
• pp.51-57
• /
• 2010

This paper proposes extended trust evaluation mechanism which is able to become the standard of the node selection which provides a better service by using the basic transaction message which occurs from within the mobile Ad-hoc network and the additional transaction message and add confidence value. Furthermore, throughout the simulation shows the efficiency of the proposed trust evaluation mechanism.

• Journal of Industrial Convergence
• /
• v.1 no.2
• /
• pp.107-124
• /
• 2003

With rapid growth and competition of electronic commerce through internet, various buying types and business models are being appeared. In this paper, we studied group buying which is new business model to consumer and factors affecting on trust and participation of group buying. The followings are the regression result of this study. First, familiarity factor, customer service factor, seal of security and product value factor made a significant effect on trust. Second, familiarity factor, perceived reputation factor, customer service factor, seal of security and product value factor made a significant effect on participation of group buying. Third, trust of group buying made a significant effect on participation of group buying. In this study, modeling and empirical test were implemented about structure of trust and participation of group buying. We can know where our group buying strategies should focus and which factor we should improve.

• International Journal of Internet, Broadcasting and Communication
• /
• v.12 no.4
• /
• pp.180-187
• /
• 2020

Security threats are increasing with interest due to the mass spread of smart devices, and vulnerabilities in developed applications are being exposed while mobile malicious codes are spreading. The government and companies provide various applications for the public, and for reliability and security of applications, security checks are required during application development. In this paper, among the security threats that can occur in the mobile service environment, we set up the vulnerability analysis items to respond to security threats when developing Android-based applications. Based on the set analysis items, vulnerability analysis was performed by examining three applications of public institutions and private companies currently operating as mobile applications. As a result of application security checks used by three public institutions and companies, authority management and open module stability management were well managed. However, it was confirmed that many security vulnerabilities were found in input value verification, outside transmit data management, and data management. It is believed that it will contribute to improving the safety of mobile applications through the case of vulnerability analysis for Android application security.