• Title/Summary/Keyword: security standards

Search Result 601, Processing Time 0.03 seconds

Comparative Analysis on ICT Supply Chain Security Standards and Framework (ICT 공급망 보안기준 및 프레임워크 비교 분석)

  • Min, Seong-hyun;Son, Kyung-ho
    • Journal of the Korea Institute of Information Security & Cryptology
    • /
    • v.30 no.6
    • /
    • pp.1189-1206
    • /
    • 2020
  • Recently, ICT companies do not directly design, develop, produce, operate, maintain, and dispose of products and services, but are outsourced or outsourced companies are increasingly in charge. Attacks arising from this are also increasing due to difficulties in managing vulnerabilities for products and services in the process of consignment and re-consignment. In order to respond to this, standards and systems for security risk management of ICT supply chain are being established and operated overseas, and various case studies are being conducted. In addition, research is being conducted to solve supply chain security problems such as Software Bill of Materials (SBOM). International standardization organizations such as ISO have also established standards and frameworks for security of ICT supply chain. In this paper, we presents ICT supply chain security management items suitable for domestic situation by comparing and analyzing ICT supply chain security standards and systems developed as international standards with major countries such as the United States and EU, and explains the necessity of cyber security framework for establishing ICT supply chain security system.

A study of the Domestic Trend in the law and institutions of International Standard Disaster Management -Focusing on ISO/TC 292- (재난관리 관련 국제표준별 국내 법·제도 동향 -ISO/TC 292 중심으로-)

  • Yun, Junyoung;Min, Geumyoung;Jung, Dukhoon
    • Journal of the Society of Disaster Information
    • /
    • v.11 no.2
    • /
    • pp.287-296
    • /
    • 2015
  • In this study, international standards in disaster management and the management of the relevant International Standards Organizations(ISO), in particular ISO / TC 292 (Security- Safety) research subcommittee to look at international standards of relevant international standards for disaster management trends, each international domestic law related to the standard were researched. National Disaster Management Authority as a Ministry of Public Safety and Security (formerly the National Emergency Management Agency) has continued to prepare a plan for applying national disaster management relevant to the international standards. As the disaster management international standard continues to be established, disaster management agencies need to continue to keep pace with the international community to find ways to introduce international standards.

Curriculum study of information security awareness for medical institution (의료기관 정보보호 인식교육을 위한 교육과정 연구)

  • Kim, Dong-Won;Han, Keun-Hee
    • Convergence Security Journal
    • /
    • v.19 no.4
    • /
    • pp.151-163
    • /
    • 2019
  • As smart devices and communication technologies have developed rapidly, the healthcare industry in the globe is seeing remarkable issues on medical security. At the same time, personal medical records are being shared in the network, which would raise the risk of information security. This thesis aims to develop the curriculum to raise the awareness of information security among workers in medical institutions by referring to NCS(National Competency Standards) International standards, medical institutions' requirements and educational institutions' curriculums on information security based on proven results from medical devices and systems introduced in the public health centers, territorial branches, community health posts and primary, secondary, tertiary hospitals. Thus, this thesis offers the method to improve information security in healthcare institutions through validation testing conducted by medical practitioners and ICT experts.

Construction of Security Evaluation Criteria for Web Application Firewall (웹방화벽의 보안성 평가 기준의 구축)

  • Lee, Ha-Yong;Yang, Hyo-Sik
    • Journal of Digital Convergence
    • /
    • v.15 no.5
    • /
    • pp.197-205
    • /
    • 2017
  • To achieve web application security goals effectively by providing web security features such as information leakage prevention, web application firewall system must be able to achieve the goal of enhancing web site security and providing secure services. Therefore, it is necessary to study the security evaluation of web application firewall system based on related standards. In this paper, we analyze the requirements of the base technology and security quality of web application firewall, and established the security evaluation criteria based on the international standards for software product evaluation. Through this study, it can be expected that the security quality level of the web application firewall system can be confirmed and the standard for enhancing the quality improvement can be secured. As a future research project, it is necessary to continuously upgrade evaluation standards according to international standards that are continuously changing.

Development on Filtering Priority Algorithm for Security Signature Search (보안 시그니처 탐지를 위한 필터링 우선순위 알고리즘 구현)

  • Jun, Eun-A;Kim, Jeom-goo
    • Convergence Security Journal
    • /
    • v.20 no.5
    • /
    • pp.41-52
    • /
    • 2020
  • This paper implements a priority algorithm for active response to security event risk, and implements an event scheduler that performs efficient event processing based on this. According to the standards that have global standards such as CVE and CVSS, standards for scoring when security events are executed are prepared and standardized so that priorities can be more objectively set. So, based on this, we build a security event database and use it to perform scheduling. In addition, by developing and applying the security event scheduling priority algorithm according to the situation of security events in Korea, it will contribute to securing the reliability of information protection and industrial development of domestic or ganizations and companies.

Standards on the Effectiveness of the Rights to Social Security of People with Disability (장애인 사회보장수급권의 실효성 기준에 관한 연구)

  • Seo, Jeong-Hee
    • Korean Journal of Social Welfare
    • /
    • v.62 no.1
    • /
    • pp.211-235
    • /
    • 2010
  • This study attempts to examine standards on the effectiveness of the rights to social security of people with disability. The current research makes the standards on effectiveness of social security rights to the disabled. This standards draw four right areas and five general principles from debates about effectiveness of general social security rights and extend for applying three social area to the disabled. Four right areas are benefit coverage, benefit structure, benefit restriction and rights relief. Five general principles are enforceable rule principle, national finance principle, unconditional principle, adequacy principle and penalties principle. These four right areas and five general principles apply to three social security areas of income support, employment security and medical security. Measurement values are 'high' and 'low'. These measurement values divided into two that are used to ensure same intervals. This study on standards to the effectiveness of the rights to social security of people with disability has political and theoretical implications. First, in political aspects, these standards provide objective understanding of the present level of social security policies for the disabled. Second, theoretically the current study expands debates about the effectiveness of general social security through multi-disciplined research. At once this study is significant to establish empirical research foundation.

  • PDF

A Study on Evaluation Criteria and Procedures for Measuring Radiation Leakage of Aviation Security Equipment (항공보안장비 방사선 누출량 측정을 위한 평가 기준 및 절차에 관한 연구)

  • Kihyun Kim;Ye-Eun Jeong;Ye-Jun Kim;Yong Soo Kim
    • Journal of Korean Society for Quality Management
    • /
    • v.51 no.3
    • /
    • pp.435-444
    • /
    • 2023
  • Purpose: To attain advanced performance certification, safety aspects along with functionality and performance are essential. Hence, this study suggests radiation leakage assessment methods for aviation security equipment during its performance certification. Methods: Detection technology guided the choice of radiation leakage assessment targets. We then detailed measurement and evaluation methods based on equipment type and operation mode. Equipment was categorized as container or box types for establishing measurement procedures. Results: We've developed specific radiation leakage assessment procedures for different types of aviation security equipment, crucial for ensuring airport safety. Using these procedures allows efficient evaluation of compliance with radiation leakage standards. Conclusion: The suggested radiation leakage assessment method aims to enhance aviation security and reliability. Future research will focus on identifying risks in novel aviation security equipment detection technologies and establishing safety standards.

Disaster Management System and a Necessity of Standardization in Korea (국가 재난관리체계와 표준화의 필요성)

  • Ryu, Ji Hyeob;Kim, Woo Hyeok;Hwang, Eui Jin
    • Journal of Korean Society of societal Security
    • /
    • v.1 no.1
    • /
    • pp.35-43
    • /
    • 2008
  • This study analyzes the present state of disaster management system in Korea and the international standardization trend of disaster management systems in advanced nations. ISO has developed international disaster management standards in ISO/TC 223 Societal Security Technical Committee, and the advanced nations such as U.S.A., U.K. and Japan are in competition with each others to reflect their national disaster management standards in international standardization. Each disaster management organization in Korea separately carries on the disaster management standardization and activities because national standards for the disaster management is not established yet. The national standardization efforts for disaster management system have to be executed in Korea to raise efficiency in disaster management activities and to cope with the international standardization of disaster management.

  • PDF

The Analysis of KASS Operational Mitigation Methods and Continuity Cases Based on ICAO Standards (ICAO 표준 기반 KASS 운영 상 완화조치 및 연속성 사례 분석)

  • Yun-Jung Choi;Dong-Hwan Bae;Hyo-Jung Yoon;Donghwan Yoon
    • Journal of Positioning, Navigation, and Timing
    • /
    • v.13 no.2
    • /
    • pp.131-136
    • /
    • 2024
  • This paper deal with a method for calculating the continuity of Korea Augmentation Satellite System (KASS), which was completed in Korea in December 2023, and a plan to respond in the event that a continuity hazard situation occurs during operation. For this purpose, the International Civil Aviation Organization (ICAO) Satellite Based Augmentation System (SBAS) continuity standards, Wide Area Augmentation System (WAAS), and European Geostationary Navigation Overlay Service (EGNOS) continuity cases are examined in this paper. According to the measures recommended by the ICAO, when the number of continuity risks exceeds a certain level and the level drops drastically, various mitigation operations by country are implemented. Through this, if KASS does not meet ICAO continuity standards in the future, such measures can be referred to. In addition, this paper computes the short-term KASS continuity during the test broadcast period. Although continuity does not meet the ICAO standards, although this test period is too short, further meaningful analysis in the future is required. Additionally, this paper carried out an analysis of the timing and period to systematically calculate the meaningful value of continuity.