• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.26 no.6
• /
• pp.1583-1592
• /
• 2016

This report explains unspecified private information that have the company of resource value is provided the public with out protection. Let's have a good look at the protection of unspecified private information problems through personal information of law and policy mobile messenger company's TOS(Terms of service) We urgently need for an competition framework to prevent the leaking of Non-specified private informations and need for technical development that is information combined management system. We try verify systems as mentioned above with variety scenarios and suggest improvement plan that is leaking Non-specified private information.

• Review of KIISC
• /
• v.10 no.4
• /
• pp.53-68
• /
• 2000

최근 정보보호 문제와 관련하여 많은 논의가 일고 있으며, 또한 이와 관련된 여러 법규들이 제·개정되고 있다. 이러한 노력을 통하여 문제가 되고 있는 개인 정보나 통신비밀의 보호문제, 정보화의 역기능 문제 등이 어느 정도 효과적으로 대응할 수 있게 되었으나 현행 법규들은 새롭게 등장하는 정보 침해 문제의 대응에 급급한 나머지 관련법들간의 상호 조정이 제대로 이루어지지 못한 실정이다. 본 논문에서는 이와 같은 문제와 관련된 전체 법 체계를 종합적으로 검토하여 향후 정보보호관련 법규의 재정비 및 심화되는 정보보호 문제 해결에 도움이 되도록 하였다.

• Information and Communications Magazine
• /
• v.32 no.1
• /
• pp.24-27
• /
• 2014

기존의 사이버 환경의 보안 기술은 단순히 데이터, 네트워크, 시스템을 보호함으로써 인간의 자산을 보호하는 차원의 기술이었다면, IoT 환경에서 보안 기술은 궁극적으로 사물들로부터 사람을 보호하는 기술로 패러다임의 변화가 예상된다. 따라서 본고에서는 미래의 새로운 성장동력으로 부상하고 있는 사물인터넷(IoT) 서비스 활성화를 지원하는 동시에 인간의 자산과 생명을 보호하기 위하여 정부차원에서 수립한 정보보호 기술 개발 계획을 정리한다. IoT 정보보호 기술은 디바이스, 네트워크, 서비스/플랫폼의 3개 계층으로 나누어 9개 원천기술로 분류하였다

• 정보보호뉴스
• /
• s.127
• /
• pp.6-7
• /
• 2008

글로벌 기업 및 해외 기관의 개인정보보호 전문가들이 한 자리에 모인 Privacy Global Edge 2008이 지난 4월 2일 대한상공회의소 의원회의실에서 개최됐습니다. 이번 행사는 한국정보보호진흥원이 주최하고 한국CPO포럼이 주관한 것으로, 세계적인 기업이나 기관에서는 개인정보를 어떻게 관리하고, 또 프라이버시 보호를 위해 어떤 활동을 펼쳐나가고 있는 지를 소개하는 자리였죠. 평소에는 듣기 어려운 이와 같은 행사에 정보보호뉴스 취재팀의 발길도 행사장으로 향했습니다.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.25 no.5
• /
• pp.1245-1255
• /
• 2015

As cloud computing services become popular, the concern on the data security of cloud services increases and the efforts for the data security become essential. In this paper, we describe the pros and cons of cloud computing including the definition of cloud. Then, we discuss the regulations about the protection of user data defined in cloud promotion act. Previous studies related to the privacy protection and the entrustment of personal information in cloud computing are reviewed. We examine how to store the personal information depending on the cloud service model. As a result, we argue that the entrustment of personal information should vary according to the cloud service model and we propose how to protect the personal information on IaaS and SaaS cloud service models.

• Journal of Convergence for Information Technology
• /
• v.11 no.3
• /
• pp.20-33
• /
• 2021

This study is to suggest improvements of personal information protection in South Korea, according to requiring the safety of process and protection of personal information. Accordingly, based on data collection and analysis through literature research, this study derived the issues and suitable standards of personal information for major artificial intelligence services. In addition, this cases studies were reviewed, focusing on the legal compliance and porcessing compliance for personal information proection in major countries. And it suggested the improvement plan applied in South Korea. As the results, in legal compliance, it is required reorganization of related laws, responsibility and compliance to develop and provide AI, and operation of risk management for personal information protection laws in AI services. In terms of processing compliance, first, in pre-processing and refining, it is necessary to standardize data set reference models, control data set quality, and voluntarily label AI applications. Second, in development and utilization of algorithm, it is need to establish and apply a clear regulation of the algorithm. As such, South Korea should apply suitable improvement tasks for personal information protection of safe AI service.

• Korean Journal of Optics and Photonics
• /
• v.14 no.4
• /
• pp.383-391
• /
• 2003

A new optical security system for the protection of personal identification information is proposed. Personal identification information consisting of a pure face image and an identification number is used for verification and authentication. Image encryption is performed by a fully phase image encryption technique with two random phase masks located in the input and the Fourier plane of 4-f correlator. The personal information, however, can be leaked out in the decryption process. To cope with this possibility, the encrypted image itself is used in the identification process. An encrypted personal identification number is discriminated and recognized by using the proposed MMACE_p (multiplexed MACE_p) filter, and then authenticity of the personal information is verified by correlation of the face image using the optical wavelet matched filter (OWMF). MMACE_p filter is a synthetic filter with four MACE_p (minimum average correlation energy_phase encrypted) filters multiplexed in one filter plane to recognize 10 different encrypted-numbers at a time. OWMF can improve discrimination capability and SNR (signal to noise ratio). Computer simulations confirmed that the proposed security technique can be applied to the protection of personal identification information.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.25 no.2
• /
• pp.383-393
• /
• 2015

Recently, the number of companies consigning their personal information management work has been increasing; they consign the work for various reasons and purposes, for example, in order to reduce costs related to personal information managers, improve efficiency through professional performance and to improve service quality. As such, since the cases where an consigning agency - not the personal information manager - handles personal information are increasing due to the increase of consigning of the personal information management work, we need to concerned with and pay attention to how much such agency makes efforts for personal information protection. In this regard, this study suggests a plan for efficient management of the agency during the course of consigning work as well as a list of requirements for personal information protection to be considered in each phase of the following; establishment of personal information protection framework for all consigning work processes, selection of consigning agency, execution of consigning contract, operation and management of consigning work, and termination of contract.

• Review of KIISC
• /
• v.12 no.4
• /
• pp.56-66
• /
• 2002

최근 무선에서의 보안 결함이 밝혀지고, 무선 환경에서의 개인 프라이버시 침해 문제가 사회적인 현안으로 등장하였다. 본 고에서는 무선 기반 공중망의 보안성 강화를 위하여 국제 표준화기구에서 논의하고 있는 무선 LAN 정보보호 기술과 키관리 기술 및 가입자 인증 기술 동향과 향후 전망에 대해서 분석해 보고자 한다.

• Digital Contents
• /
• no.5 s.96
• /
• pp.78-82
• /
• 2001

최근 개인정보 유출 및 컴퓨터 범죄가 정보 역효과로 대두되고 있다. 이에 본지는 정보보호 및 컴퓨터 범죄에 관해서 국내에서는 앞선 연구를 하고 있는 한국 정보보호센터의 김연수 연구원의 연재를 통해 정보보호 및 컴퓨터범죄에 관한 기술 및 유형별 동향 법적 대응등에 관한 폭넓은 고찰을 통해 정보보호와 사이버 범죄의 실상과 예방에 기여하고자 한다.