• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.20 no.3
• /
• pp.9-21
• /
• 2010

Recently, famous online shopping websites were hit by hacking attack, and many users' personal information such as ID, password, account number, personal number, credit card number etc. were compromised. Hackers are continuing to attack online shopping websites, and the number of victims of these hacking is increasing. Especially, the exposure of credit card numbers is dangerous, because hackers maliciously use disclosed card numbers to gain money. In 2007 Financial Cryptography Conference, Ian Molly et al. firstly proposed dynamic card number generator, but it doesn't meet reuse resistant. In this paper, we analyzed security weaknesses of Ian Molly's scheme, and we proposed a new one-time virtual card number generator using a mobile device which meets security requirements of one-time virtual card numbers. Then, we propose one-time credit card number generation and transaction protocol using Integrated Authentication Center for user convenience and security enhancement.

• Journal of Teachers' Pension
• /
• v.2
• /
• pp.243-274
• /
• 2017

최근 우리나라는 유례를 찾아볼 수 없을 정도로 고령화 진행속도가 빠른 나라로 공적 연금재정과 연금제도의 지속가능성에 대한 관심이 증가하고 있는 상황이다. 따라서 사회보장제도 개혁에 성공한 국가로 잘 알려진 스웨덴 사례를 통해 사학연금제도의 유지 및 장기적 재정안정화에 시사하는 바를 찾고자 한다. 스웨덴 정부는 인구고령화에 따른 위험에 상대적으로 안전한 '명목확정기여(Notional Defined Contribution)'방식을 도입하여, 개인의 연금계좌에 연금보험료를 적립하여 수급시점에 본인이 부담한 보험료 상당액을 연금으로 돌려받을 수 있도록 운영하고 있다. 또한 경제상황이 예상 수준보다 침체되고 연금 재정수지가 악화될 경우 이와 연계하여 자동으로 연금가입자의 부담금을 높이고, 지출되는 급여액을 감소시키는 '자동재정균형장치(Automatic Balancing System)'를 도입하였다. 상기와 같이 기여와 급여를 명확하게 연계시키는 스웨덴의 명목확정기여 방식의 연금제도는 장기적 재정안정은 물론이고 안정적인 연금 급여를 제공한다고 평가되고 있다. 스웨덴은 연금개혁 후 확정기여(DC)제도로 전환하여 장기적인 제도 안정성을 추구하지만 사학연금은 확정급여(DB)제도를 유지하면서 급여수준의 하향조정과 보험료율을 점진적으로 상향시켜 재정안정성을 확보하는 것이 가장 큰 차이점이다. 스웨덴의 연금제도와 같이 공적연금의 틀을 유지하면서 사적연금의 장점을 최대로 수용한 명목확정기여 방식의 연금제도를 도입한다면 급격한 재정부담 없이 장기적으로 지속가능한 연금재정 안정화에 기여할 수 있을 것이다. 일견 스웨덴의 정치, 경제상황 및 문화적 특성 차이로 인해 스웨덴의 연금제도 방식을 획일적으로 사학연금제도에 적용하는 것은 불가능하다. 경제상황을 고려한 기여와 급여의 연계 강화를 개혁의 기본방향으로 설정한 스웨덴의 사례를 벤치마킹하여 사학연금 또한 거시경제상황과 조화를 이루는 제도개선 및 자동안정장치를 마련해 보는 것도 고려해 봄직 하다. 지속적으로 스웨덴 및 연금제도 선진 국가들의 연금개혁안을 재검토하여 사학연금제도에 현실적으로 적용할 수 있는 방안과 시사점들을 찾는 노력이 필요할 것이다.

• The Journal of the Korea institute of electronic communication sciences
• /
• v.18 no.5
• /
• pp.877-884
• /
• 2023

In this study, when another vehicle is parked in a designated space where a personal vehicle can park and a defined personal use time, an ultrasonic object recognition sensor is used to determine vehicle entry, and a camera sensor recognizes a license plate. If the vehicle is not recognized by the individual vehicle owner, the "private parking lot operation block" of the application server receives the individual phone number based on the National Police Agency's Vehicle Number Information Inquiry Open API. Afterwards, when parking is processed, the non-right holder receives the approval of the parking right holder, parks for the recognized time, and deposits the parking fee into the public account of the city hall. Through this study, it was possible to find an operation processing method that can most effectively manage parking in the city center in a private parking space recognized by the city hall.

• Journal of the Korean Society for information Management
• /
• v.19 no.1
• /
• pp.23-46
• /
• 2002

With explosively increasing digital contents, library and Information center should have a new role between knowledge providers and knowledge users as information brokering organization. Electronic transaction system should be required for performing this brokering service since economic value is added to information and knowledge in information society. The developments and changes around library are keeping up with increasing building digital library and digitalizing printed sources. With the rapidly changing circumstances, the Internet is currently witnessing an explosive growth. By serving as a virtual information resource. the Internet can dramatically change the way business is conducted and Information is provided. However because of features o( the Internet like openness and information sharing, it has fundamental vulnerabilities in security issues. For Instance, disclosure of private information and line eavesdropping such as password, banking account, transaction data on network and so on are primary obstruction factors to activation of digital contents delivery on network. For high network security and authentication, this paper looks at smart card technologies and proposes multi-authentication protocol based on smart card on open network, implements and analyzes it.

• Journal of Internet Computing and Services
• /
• v.21 no.3
• /
• pp.1-9
• /
• 2020

Along with the growth of Blockchain, DApp (Distributed Application) is getting attention. As interest in DApp grows, market size continues to grow and many developers participate in development. Many developers are using API(Application Programming Interface) services to mediate Blockchain nodes, such as Infura, for DApp development. However, when using such a service, there is a serious risk that the API service operator can violate the user's privacy by 1 to 1 matching the account address of the Transaction executed by the DApp user with the IP address of the DApp user. It can have an adverse effect on the reliability of public Blockchains that need to provide users with a secure DApp service environment. The proposed Blockchain platform is expected to provide user privacy protection from API services and provide a reliable DApp use environment that existing Blockchain platforms did not provide. It is also expected to help to activate DApp and increase the number of DApp users, which has not been activated due to the risk of an existing privacy breach.

• Korean Security Journal
• /
• no.62
• /
• pp.185-203
• /
• 2020

While overall crime has been on the decline since 2009, voice phishing has rather been on the rise. The government and academia have presented various measures and conducted research to eradicate it, but it is not enough to catch up with evolving voice phishing. In the study, researchers focused on catching criminals and preventing damage from voice phishing, which is difficult to recover from. In particular, a voice phishing prediction method using the Fraud Detection System (FDS), which is being used to detect financial fraud, was studied based on the fact that the victim engaged in financial transaction activities (such as account transfers). As a result, it was conceptually derived to combine big data such as call details, messenger details, abnormal accounts, voice phishing type and 112 report related to voice phishing in machine learning-based Fraud Detection System(FDS). In this study, the research focused mainly on government measures and literature research on the use of big data. However, limitations in data collection and security concerns in FDS have not provided a specific model. However, it is meaningful that the concept of voice phishing responses that converge FDS with the types of data needed for machine learning was presented for the first time in the absence of prior research. Based on this research, it is hoped that 'Voice Phishing Damage Prediction System' will be developed to prevent damage from voice phishing.

• The Journal of the Korea Contents Association
• /
• v.15 no.10
• /
• pp.607-615
• /
• 2015

Mosts user of internet and smart phone has certificate, and uses it when money transfer, stock trading, on-line shopping, etc. Mosts user stores certificate in a hard disk drive of PC, or the external storage medium. In particular, the certification agencies are encouraged for user to store certificate in external storage media such as USB memory rather than a hard disk drive. User think that the external storage medium is safe, but when it is connect to a PC, certificate may be copied easily, and can be exposed to hackers through malware or pharming site. Moreover, if a hacker knows the user's password, he can use user's certificate without restrictions. In this paper, we suggest secure management scheme of the private key file using a password of the encrypted private key file, and a USB Memory's hardware information. The private key file is protected safely even if the encrypted private key file is copied or exposed by a hacker. Also, if the password of the private key file is exposed, USB Memory's container ID, additional authentication factor keeps the private key file safe. Therefore, suggested scheme can improve the security of the external storage media for certificate.

• Journal of Labour Economics
• /
• v.38 no.4
• /
• pp.1-29
• /
• 2015

The Individual Retirement Pension (IRP) enables workers to continuously receive a retirement pension even when workers change their jobs in different companies and so it performs a bridge fund as the complimentary living expenses until they receive government public pension. Although the Korean government has forced workers to maintain an IRP account until their retirement age and to close their accounts only when they want to do so, it is not clear to measure its really effectiveness and, in fact, most of IRP accounts have been terminated immediately after the changes of their jobs. In this respect, IRP has not performed the bridge role for the future retirement pension income. We provide an economic decision-making model of both government and workers, where the retirement benefits related with the IRP are explicitly considered. Our model is required to select specific severance pay systems to maximize the income security and stability for their future old ages. It is concluded that the need of workers on the severance pay system is automatically revealed into the switch to IRP when workers are out from their current jobs, which is equivalent to the effect of gradually unifying the dual system of the retirement payment. In additoin, our empirical data indicates the relatively higher probability of termination on IRP for the older male workers having the more retirement deposit.

• Proceedings of the Korea Institute of Convergence Signal Processing
• /
• 2001.06a
• /
• pp.173-176
• /
• 2001

In this thesis, a new measurement system is implemented for depth data extraction based on the camera calibration of the known pattern. The relation between 3D world coordinate and 2D image coordinate is analyzed. A new camera calibration algorithm is established from the analysis and then, the internal variables and external variables of the CCD camera are obtained. Suppose that the measurement plane is horizontal plane, from the 2D plane equation and coordinate transformation equation the approximation values corresponding minimum values using Newton-Rabbson method is obtained and they are stored into the look-up table for real time processing . A slit laser light is projected onto the object, and a 2D image obtained on the x-z plane in the measurement system. A 3D shape image can be obtained as the 2D (x-z)images are continuously acquired, during the object is moving to the y direction. The 3D shape images are displayed on computer monitor by use of OpenGL software. In a measuremental result, we found that the resolution of pixels have $\pm$ 1% of error in depth data. It seems that the error components are due to the vibration of mechanic and optical system. We expect that the measurement system need some of mechanic stability and precision optical system in order to improve the system.

• Journal of Service Research and Studies
• /
• v.10 no.1
• /
• pp.17-31
• /
• 2020

Open banking, the global trend of the financial industry, is the driving force behind various innovations in the financial market in the future. The right policy direction and detailed tasks are important for triggering the differentiation and reunion of the financial industry. The purpose of this study is to investigate and analyze the background of open banking, domestic and international trends, and Korea's open banking policy. The policy directions and tasks for successful settlement and activation of open banking system are carefully suggested. Open banking is a policy to allow third party provider(TPP) access to bank accounts and open payment functions under the explicit consent of the customer. The opening of the open banking era is expected to begin competition and cooperation between banks and fintech companies in earnest, thus enhancing the competitiveness of the financial industry and contributing to the utility of financial consumers. To this end, policymakers should make every effort to advance open-ended financial settlement infrastructure, open banking legal grounds, and minimize side effects such as customer data leakage and poor financial system stability. Banks and fintech companies will need to focus on scattered customer financial information on a single platform and develop it into a convergence and discrimination of true financial services.