• Journal of Industrial Technology
• /
• v.21 no.A
• /
• pp.181-188
• /
• 2001

An XML is an markup language which has been focused on the next generation Web programming language. It easily represents the complex structure of a document, and it is possible to provide the access control over each component of an XML document. An implicit authorization technique means that granting an authorization to a node has effect on granting the same implicit authorization to its all descendants. Therefore, it enhances the time for the authorization grant and reduces the memory required for the authorization information. An authorization technique using an intention type and a authorization replacement solves a redundancy problem and decides whether the access is possible or the authorization conflict occurs at the first attempt.

• Korean Journal of Computational Design and Engineering
• /
• v.22 no.1
• /
• pp.44-58
• /
• 2017

The inspection for building occupancy authorization has lacked objectivity due to manual measurement methods. This is why connivance of the illegal buildings has been rampant, which has led to so many incidents. Consequently, this law has lost its intent to protect people's lives and property. In this study, for the purpose of improvement of this law, the research was conducted by the utilization of unmanned aerial vehicle for automated inspection for building occupancy authorization. Theoretical considerations about building occupancy authorization and the trend of UAV technology were accomplished. Secondly, a series of reverse engineering was conducted including digital photography, network RTK-VRS surveying and post-processing data. Thirdly, the resultant spatial information was used for building occupancy inspection authorization in a BIM platform and the effectiveness and applicability of UAV-based inspection was analyzed. As a result, methodology for UAV-based automated building occupancy inspection authorization was derived. And it was found that eleven items would be possible to be automated among thirty total items for building occupancy authorization. Also it was found that UAV-based automated inspection could be valid in inspecting building occupancy authorization due to authentic accuracy, effectiveness and applicability with government policy.

• Journal of Aerospace System Engineering
• /
• v.9 no.1
• /
• pp.19-27
• /
• 2015

The Technical Standard Order articles are the parts and appliances for which the civil aviation authority designates as it is necessary to standardize for the expedited certification process and aviation safety. TSO articles were used on the type certified aircraft as replacement parts in the early days of TSO authorization system, but those articles are widely used on the newly developed aircraft as well in these days. In this paper, we compared the differences of the TSO authorization systems between FAA and EASA, and proposed the rulemaking items to improve Korean TSO authorization system and to contribute to growth of aviation industry.

• Journal of Information Technology and Architecture
• /
• v.11 no.3
• /
• pp.321-332
• /
• 2014

In this paper we propose a new notion of predictable flags type of authorization for controlling access to XML documents. By using predictable flags, we are able to efficiently detect conflicts between existing authorizations and new authorizations to be added. XML documents have an element-composition hierarchical structure in that a higher level element consists of multiple lower level sub-elements. Many XML documents systems have used the notion of implicit authorization that grants authorizations to an element and the all descendants to avoid the overhead caused by explicitly storing all authorization for each element. When we grant an authorization on an element in the XML documents, the implicit authorization method is inefficient in determining the conflicts since it needs to examine all authorizations on the descendants of that element. In contrast, our mechanism using predictable flags has the advantage of detecting the conflicts immediately at the element where an explicit authorization is to be granted.

• Journal of Digital Convergence
• /
• v.12 no.8
• /
• pp.289-294
• /
• 2014

Recently, the various web service and applications are provided to the user. As to these service, because of providing the service to the authenticated user, the user undergoes the inconvenience of performing the authentication with the service especially every time. The OAuth(Open Authorization) protocol which acquires the access privilege in which 3rd Party application is limited on the web service in order to resolve this inconvenience appeared. This OAuth protocol provides the service which is convenient and flexible to the user but has the security vulnerability about the authorization acquisition. Therefore, we propose the method that analyze the security vulnerability which it can be generated in the OAuth 2.0 protocol and secure user authority authentication method.

• Journal of Digital Convergence
• /
• v.11 no.9
• /
• pp.189-194
• /
• 2013

Semantic Web is what supports a search, data integration, and automated web service by developing technology of giving help so that a computer can understand information a little more on the web. As amount of information gets growing and diverse, there is a problem of offering by efficiently extracting and processing only information proper for users' demand. Semantic Web isn't what is distinguished completely from the existing web. It gives a meaning, which was well defined, to information of being inserted on web by expanding the current web. Through this, a computer and a person come to perform work cooperatively. To implement Semantic Web, the limit of HTML needs to be overcome. The existing access authorization has not taken information and semantics into account due to the limitations of HTML. It is difficult to expand or integrate many relevant documents by using HTML. Program or software agent, not a person, cannot extract a meaning of document automatically. This study suggests a method of Access Authorization Policy Management that is in the Semantic Web configuration. Accordingly, the policy, which was designed in this study, improved the authorization process more than the existing method.

• Journal of Distribution Science
• /
• v.12 no.7
• /
• pp.5-12
• /
• 2014

Purpose - This study identified internationalization factors forKorean SMEs and explored factor differences between AEO and non-AEO authorized companies. Research design, data, and methodology - The study was designed to assess internationalization factors for AEO authorization in Korea through a questionnaire survey and an empirical analysis. The questionnaires were conducted for AEO and Non-AEO authorized companies that were undergoing AEO authorization. The study was conducted through e-mail and AEO manager education classes. Ninety-five questionnaires were collected. We employed the exploratory factor analysis methodology to derive internationalization factors for KoreanSMEs, and explored the factor differences between AEO and Non-AEO authorized companies. Results - AEO authorized companies outperformed Non-AEO authorized companies in R&D and technology. This indicated that AEO authorized companies were recognized as reliable and safe companies by the Korea Customs Service and other Customs services in trade facilitation and customs clearance processes. Conclusions - This study has some implications for AEO authorization and internationalization processes, and involved the empirical analysis of SMEs and the exploratory factor analysis in the internationalization process.

• Journal of Korea Society of Digital Industry and Information Management
• /
• v.10 no.3
• /
• pp.99-106
• /
• 2014

The most significant change and trend in the information security market in the year of 2014 is in relation to the issue and incidents of personal information security, which leads the area of information security to a new phase. With the year of 2011 as the turning point, the security technology advanced based on the policies and conditions that combine personal information and information security in the same category. Such technical changes in information security involve various types of information, rapidly changing security policies in response to emerging illegal techniques, and embracing consistent changes in the network configuration accordingly. This study presents the result of standardization and quantification of external access inference by utilizing the measurements to fathom the access authorization performance in advance for information security in specialized networks designed to carry out certain tasks for a group of clients in the easiest and most simple manner. The findings will provide the realistic data available with the access authorization inference modes to control illegal access to the edge of a client network.

• Proceedings of the Korea Contents Association Conference
• /
• 2014.06a
• /
• pp.221-222
• /
• 2014

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.17 no.4
• /
• pp.11-19
• /
• 2007

A ubiquitous network environment is a system where the user can avail of the network's services anytime, anywhere. To establish such an environment, studies continue being conducted on wireless communication technology and mobile terminals. The company that provides such services should have an established system for authentication, authorization and charging for users. This service is referred to as Authentication, Authorization, Accounting(AAA), and its aspects have been consistently studied. On the other hand, existing studies have been promoted with regard to the authentication and efficiency of the mobile terminal. One of the method is that the mobile terminal contacts to the home authentication server through the external authentication server every time it is required and; another one is to use a medium server to provide authentication in the middle between them. Thus, this study aims to determine the best method to use ticketing, where tickets are provided through a mobile terminal, complete with authentication and authorization features. Also, as it uses ticket, it can efficiently provide mobile verification processing.