Journal of Internet Computing and Services (인터넷정보학회논문지)

Korean Society for Internet Information (한국인터넷정보학회)
권호 표지
DOI QR코드

DOI QR Code

Research on Military SNS Protection Profile for National defense

국방정보보호를 위한 군(軍) SNS 보호프로파일(PP) 개발에 관한 연구

  • Yu, DeokHoon (Center for Information Security Technologies(CIST), Korea University) ;
  • Kim, SeungJoo (Center for Information Security Technologies(CIST), Korea University)
  • Received : 2012.10.30
  • Accepted : 2012.12.10
  • Published : 2013.02.28
Download PDF
⟨ Previous Next ⟩

Abstract

Social Network Service(SNS) have become very popular during the past few years. Also SNS, an current communication platform, greatly contributes to transmit the information rapidly and strengthen a sense of community and fellowship in military service. however it has vulnerable factors. For example, invasion of privacy, exposure of personal information and military data. In this particular case, it is a deathblow to the military service. Military Social Network Service require to protect the military security threats and disclosure of defense secrets. For such reasons we need the secure SNS that protects from any attacks or vulnerable factors. We present classification of functional type and analysis the SNS architecture. The goal of this work is propose military SNS security functional requirements for practical use safely.

새로운 커뮤니케이션 플랫폼인 소셜네트워크 서비스(이하 SNS : Social Network Service)는 다양한 정보의 빠른 전달과 함께 상호신뢰를 바탕으로 의사소통을 강화하고 친밀감을 형성해 조직 활성화에 기여하였다. SNS의 사회적 중요성이 높아짐에 따라 군에서도 SNS를 통해 자발적 참여와 신뢰관계 구축을 바탕으로 군내 외 유대감 강화에 활용하고 있다. 그러나 국방 SNS 도입시 개인정보의 노출이나 프라이버시 침해, 군사자료의 유출 등과 같은 역기능은 군에 치명적인 요인이 될 수 있어 이에 대한 보안대책이 필요하다. 본 논문에서는 국방 SNS 도입을 위해 SNS 기능별 유형을 분류하고, 유형별 구조를 분석하여 국방 SNS에 필요한 보안기능요구사항을 제시하고자 한다.

Keywords

References

  1. http://en.wikipedia.org/wiki/Social_network_service
  2. 강철원, 좌훈승, 한재웅 "Social Network Service", Computing Ethics and Social Issues, pp. 3.
  3. Danah m. boyd, Nicole B. Ellison,"Socialnet work sites: Definition, history, and scholarship", Journal of Computer-Mediated Communication, Vol 13, pp. 210-230, 2007. https://doi.org/10.1111/j.1083-6101.2007.00393.x
  4. ISO/IEC 15408 CC:Common Criteria for ITSecurity Evaluation, R3, 2009.
  5. 이진형, "SNS(Soical Network Service)Diffusion and Trends", Korea Communications Agency, Journal of Communication & Radio Spectrum. Vol. 44. pp. 54-59, 2012.
  6. Collaborative Thinking, "Reference Architect ure For Social Network Sites", <2008/07/29>,http://mikeg. typepad.com/ perceptions/2008/07/reference-archi.html
  7. slideshare, <2008/05/19>http://www.slideshare.net/ linkedin/linkedins-communication-architecture
  8. Terry.Cho's blog, <2010/03/22>, http://javamaster. wordpress.com
  9. http://nvd.nist.gov/cwe.cfm#cwes
  10. Hogben, G., Security Issues and Recommen dations for Online Social network, ENISA Position Paper No. 1, October, pp. 3-4. 2007.
  11. Symantec, "The Risks of Social Networking", Security Response, pp. 1-28, 2010.
  12. Ministry National Defense Instruction 제130 4호, "Military Information Instruction" Appendix, pp. 225, 227. 2011.
  13. Ministry National Defense Instruction 제13 93호 (2012. 2. 13.), "Military Security Instruction", pp. 21, 80.
  14. Facebook Security Guide, pp. 8-11.
  15. http://www.boannews.com/media/view.asp? idx=33144&kind=1 , 2012/10/23
  16. 김바로, "A Study on Enhanced Wireless Co nnectivity Authentication and a Security Threat Prevention in a Wireless LAN Environment", Soongsil University, pp. 6-11. 2012.
  17. Mindi McDowell and Damon Morda, "Socializing Securely: Using Social Networking Services", US-CERT, pp. 2. 2011.
  18. ENISA, "Online as soon as it happens", pp. 23-24. 2010.
  19. National Computing & Information Agency, "Web Application Development Security Guide 2010"
  20. "Information Assurance Technical Framework Documents", Release 3.1, Chapter 4. Technical Security Countermeasures, pp.32-34.
  21. 윤신숙, 장대석, 김환구, 오수현, 하재철, 김석우, "Study calculated based on the level of assurance for the development of PP", The Korea Institute of Information Security and Cryptology 제17호, 2007