• Journal of Navigation and Port Research
• /
• v.40 no.6
• /
• pp.391-400
• /
• 2016

A number of maritime accidents, and accident response activities, including the command and control procedures that were implemented at accident scenes, are analyzed to derive useful information about responding to maritime accidents, and to understand how the chain of events developed after the initial accident. In this research, a new concept of a 'risk based accident response support system' is proposed. In order to identify the event chains and associated hazards related to the accident response activities, this study proposes a 'Brainstorming technique for scenario identification', based on the concept of the HAZID technique. A modified version of Event Tree Analysis was used for quantitative risk analysis of maritime accident response activities. PERT/CPM was used to analyze accident response activities and for calculating overall (expected) response activity completion time. Also, the risk based accident response support system proposed in this paper is explained using a simple case study of risk analysis for oil tanker grounding accident response.

• Proceedings of the Korean Institute of Navigation and Port Research Conference
• /
• 2019.11a
• /
• pp.134-136
• /
• 2019

The International Maritime Organization (IMO) issued 2017 Guidelines on maritime cyber risk management. In accordance with IMO's maritime cyber risk management guidelines, each flag State is required to comply with the Safety Management System (SMS) of the International Safety Management Code (ISM) that the cyber risks should be integrated and managed before the first annual audit following January 1, 2021. In this paper, to identify cyber security management targets and risk factors in the maritime sector and to conduct vulnerability analysis, we catagorized the cyber security sector in management, technical and physical sector in maritime sector based on the industry guidelines and international standards proposed by IMO. In addition, the Risk Matrix was used to conduct a qualitative risk assessment according to risk factors by cyber security sector.

• Proceedings of the Korean Information Science Society Conference
• /
• 2007.06d
• /
• pp.29-34
• /
• 2007

본 논문은 다양한 시스템이 존재하는 컴퓨터 네트워크 상의 위험을 분석 평가하기 위한 방법을 소개한다. 실시간으로 위험을 구성하는 요소들의 상태가 변화하는 상황에서 자산의 강도 평가, 위협 가능성 분석, 취약성에 대한 기존 통제 분석이 필요하다. 기존 통제 구성은 네트워크 토폴로지를 이용한 네트워크 베이스, 응용 어플리케이션에 기반한 호스트 베이스 통제가 있으며, 이들은 컴퓨터 네트워크상의 실질적인 취약성을 효과적으로 식별하는데 도움을 준다. 또한 가능성 분석은 위험평가 과정에서 불필요한 위협 정보를 효과적으로 제거하여 줄 수 있을 것이다.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2005.05a
• /
• pp.1241-1244
• /
• 2005

중요 정보시스템에 대한 위험분석 프로세스는 자산 식별을 통해 위협, 취약성을 분석하고 이에 보호대책을 수립한다. 하지만 모든 보호대책을 적용하기에는 비용 대 효과면에서 불가능한 경우가 발생한다. 따라서, 잔여위험에 대한 분석을 통해 해결할 수 없는 위험에 대해서는 보험을 통하여 보호대책을 세워야 한다. 본 논문에서는 위험분석을 통해 계산된 피해 산정으로 사이버침해에 따른 보험 수준을 산정하는 방안을 제안하고자 한다.

• Proceedings of the Korean Institute of Navigation and Port Research Conference
• /
• 2013.06a
• /
• pp.354-356
• /
• 2013

This research analysed the marine traffic dangerous degree of korean ports by using the number of passing ships, the passing ratio of large ships and the occurrence number of marine accident. Also, it investigated the basic parameters as the number of sector or area of vessel traffic service area, and it examined the proper design compared the traffic dangerous parameters with the present area number of VTS.

• Journal of Internet Computing and Services
• /
• v.7 no.1
• /
• pp.31-38
• /
• 2006

The importance of the Security Risk Analysis has emerged as security breaches and information leaks has occurred in the companies and organization: threats toward information system and its vulnerabilities has grown up as the dependence on the information-communication systems goes higher as a result of technological advances in IT industry, A Risk Analysis Tool helps to mitigate overall risk of an organization by analysing and evaluating critical information systems and providing security measures against threats to systems and its vulnerabilities as a means to identify the inherent dangers and prevent security intrusion incident, This paper defines risk analysis process by introducing Common Criteria Scheme and suggest a risk analysis tool that can be easily implemented by an information security manager.

• Asia-pacific Journal of Multimedia Services Convergent with Art, Humanities, and Sociology
• /
• v.6 no.6
• /
• pp.103-110
• /
• 2016

The recent frequent cases of damage due to leakage of medical data and the privacy of medical patients is increasing day by day. The government says the Privacy Rule regulations established for these victims, such as prevention. Medical data guidelines can be seen 'national medical privacy guidelines' is only released. When replacing the image data between the institutions it has been included in the image file (JPG, JPEG, TIFF) there is exchange of data in common formats such as being made when the file is leaked to an external file there is a risk that the exposure key identification information of the patient. This medial image file has no protection such as encryption, This this paper, introduces a masking technique using a mosaic technique encrypting the image file contains the application to optical character recognition techniques. We propose pseudonymization technique of personal information in the image data.

• Journal of Navigation and Port Research
• /
• v.39 no.3
• /
• pp.199-207
• /
• 2015

In ports of Korea, the marine traffic flow is congested due to a large number of vessels coming in and going out. In order to improve the safety and efficiency of these vessels, South Korea is operating with a Vessel Traffic Service System, which is monitoring its waters for 24 hours. However despite these efforts of the VTS (Vessel Traffic Service) officers, collisions are occurring continuously, the risk situation is analyzed that occurs once in about 20 minutes, the risk may be greater. It investigated to reduce these accidents by providing a safety standard for collision danger in a timely manner. Thus, this study has developed a risk prediction module to predict risk in advance. This module can avoid collision risk to adjust the speed and course of ship using a risk evaluation model based on ship operator's risk perspective. Using this module, the ship operators and VTS officers can easily be identified risks in complex traffic situations, so they can take an appropriate action against danger in near future including course and speed change. To verify the effectiveness of this module, this paper predicted the risk of each encounter situation and confirmed to be capable of identifying a risk changes in specific course and speed changes at Busan coastal water.

• Proceedings of the Korean Institute of Navigation and Port Research Conference
• /
• 2012.06a
• /
• pp.414-416
• /
• 2012

동해 심해 8광구 시추작업을 계기로 우리나라 해양구조물 분야 안전관리제도의 문제점이 식별되고 있다. 이번 동해 시추작업과 관련한 사전 안전진단은 국내규정의 미비로 영국의 보건안전규정을 적용하여 검토하였다. 이 연구에서는 위험평가를 기반으로 하는 영국 해양플랜트 보건안전규정을 소개하고, 관련 국내규정의 개선방안을 제안하였다.

• Electric Engineers Magazine
• /
• s.285
• /
• pp.30-36
• /
• 2006

이상적인 GIS 예방진단 장비라 한다면 최소의 비용과 규모로 설치되어 결함은 빠짐없이 수 있어야 하며, 검출된 신호가 결함신호인지 잡음인지를 명확히 식별하여 필요한 정보만을 운전자에게 전달하여야 한다. 즉, 검출된 신호가 결함에 의한 것이라면 결함의 종류와 결함의 상세위치, 위험한 정도, 후속 필요조치 등에 대한 정보를 운전자에게 제공할 수 있어야 한다. 그동안 국내에서는 이상적인 기술목표를 향하여 꾸준히 연구해 왔으며 이제는 센서기술이나 센서 배치, 신호해석기술, 시스템 설계 제작기술, 시스템 운영 등에서 세계적 수준에 도달했다고 볼 수 있으나 외국에서도 마찬가지이기는 하지만 위험도 평가분야는 아직은 미흡한 상태이다. 현재 산업계와 학계, 연구계에서 연구개발을 활발히 하고 있으므로 수년 내에 만족할 수준까지 도달할 수 있을 것으로 전망된다.