• Journal of Internet Computing and Services
• /
• 제19권5호
• /
• pp.21-31
• /
• 2018

Cyber penetration attacks can not only damage cyber space but can attack entire infrastructure such as electricity, gas, water, and nuclear power, which can cause enormous damage to the lives of the people. Also, cyber space has already been defined as the fifth battlefield, and strategic responses are very important. Most of recent cyber attacks are caused by malicious code, and since the number is more than 1.6 million per day, automated analysis technology to cope with a large amount of malicious code is very important. However, it is difficult to deal with malicious code encryption, obfuscation and packing, and the dynamic analysis technique is not limited to the performance requirements of dynamic analysis but also to the virtual There is a limit in coping with environment avoiding technology. In this paper, we propose a machine learning based malicious code analysis technique which improve the weakness of the detection performance of existing analysis technology while maintaining the light and high-speed analysis performance applicable to commercial endpoints. The results of this study show that 99.13% accuracy, 99.26% precision and 99.09% recall analysis performance of 71,000 normal file and malicious code in commercial environment and analysis time in PC environment can be analyzed more than 5 per second, and it can be operated independently in the endpoint environment and it is considered that it works in complementary form in operation in conjunction with existing antivirus technology and static and dynamic analysis technology. It is also expected to be used as a core element of EDR technology and malware variant analysis.

• Journal of the Korean Chemical Society
• /
• 제36권5호
• /
• pp.638-643
• /
• 1992

The analytical response properties of two types of continuous flow-through electrode system as fulfide ion detectors are examined and directly compared their reponse characteristics under the optimal conditions. In both detection systems, observed peak potentials are logarithmically related to the sulfide ion concentration and at least twenty samples per hour can be determined. In the pH electrode method, the pH of the flowing recipient stream leaving the dialyzer was monitored. The designed system involves the use of continuous flow gas dialyzer in conjunction with the tubular polymer membrane electrode. In this method, optimal experimental conditions are recipient of mixture of $5.0 {\times} 10^{-5} M NaOH ＋ 5.0 {\times} 10^{-3} M$ NaCl and diluent of 0.10 M $H_2SO_4$, and all flow rates of recipient stream, diluent stream, and sample are 1.0 ml/min. In the sulfide ion electrode method, a commercially available sulfide ion-selective electrode was used to detect sulfide ion in the flow-through cell. The optimal flow rates of sulfide anti-oxidant buffer (3.5 g ascorbic acid and 7.6 g $Na_2EDTA$ dissolved in 1.0 M NaOH solution 1 l) and sample were 1.4 ml/min and 1.0 ml/min, respectively.

• Korean Journal of Remote Sensing
• /
• 제36권5_2호
• /
• pp.881-891
• /
• 2020

Recently, the Ministry of Land, Infrastructure and Transport and the Ministry of Science and ICT are developing the Land Observation Satellite (CAS-500) to meet increased demand for high-resolution satellite images. Expected image products of CAS-500 includes precision orthoimage, Digital Surface Model (DSM), change detection map, etc. The quality of these products is determined based on the geometric accuracy of satellite images. Therefore, it is important to make precision geometric corrections of CAS-500 images to produce high-quality products. Geometric correction requires the Ground Control Point (GCP), which is usually extracted manually using orthoimages and digital map. This requires a lot of time to acquire GCPs. Therefore, it is necessary to automatically extract GCPs and reduce the time required for GCP extraction and orthoimage generation. To this end, the Precision Image Processing (PIP) System was developed for CAS-500 images to minimize user intervention in GCP extraction. This paper explains the products, processing steps and the function modules and Database of the PIP System. The performance of the System in terms of processing speed, is also presented. It is expected that through the developed System, precise orthoimages can be generated from all CAS-500 images over the Korean peninsula promptly. As future studies, we need to extend the System to handle automated orthoimage generation for overseas regions.

• Journal of the Institute of Electronics Engineers of Korea SC
• /
• 제46권2호
• /
• pp.15-21
• /
• 2009

Hearing loss is one of the most common birth defects among infants. Most of hearing-impaired children are not diagnosed until 1 to 3 years of age - which is too late for the critical period (6 month) for normal speech and language development. If a hearing impairment is identified and treated in its early stage, child's speech and language skills could be comparable to his or her normal-hearing peers. For these reasons, hearing screening at birth and throughout childhood is extremely important. ABR (Auditory brain-stem response) is nowadays one of the most reliable diagnostic tools in the early detection of hearing impairment. In this study, we have developed the system that automatically detects if there is hearing impairment or not for infants or children. For future studies, it will be developed as a portable system to be able to take a measurement not only in sound proof room but also in nursery for neonates.

• Journal of Korean Society of Environmental Engineers
• /
• 제36권1호
• /
• pp.35-41
• /
• 2014

Trihalomethanes (THMs) are formed as a results of the reaction of residual chlorine, used as a disinfectant in drinking water, with the organic matter in raw water. Although chlorinated and brominated THMs are the most common disinfection byproducts (DBPs) reported, iodinated THMs (I-THMs) can be formed when iodide is present in raw water. I-THMs have been usually associated with several medicinal or pharmaceutical taste and odor problems and is a potential health concern since they have been reported to be more toxic than their brominated and chlorinated analogs. Currently, there is no published standard analytical method for I-THMs in water. An automated headspace-gas chromatography/electron capture detector (GC/ECD) technique was developed for routine analysis of 10 THMs including 6 I-THMs in water samples. The optimization of the method is discussed. The limits of detection (LOD) and limits of quantification (LOQ) range from 12 ng/L to 56 ng/L and from 38 ng/L to 178 ng/L for 10 THMs, respectively. Matrix effects in river water, sea water and wastewater treatment plant (WWTP) final effluent water were investigated and it was shown that the method is suitable for the analysis of trace levels of I-THMs, in a wide range of waters. The method developed in the present study has the advantage of being rapid, simple and sensitive.

• Journal of Biomedical Engineering Research
• /
• 제20권4호
• /
• pp.451-459
• /
• 1999

During the electromyographic evaluation for the diagnosis of neuropathy, presence for site of lesion could be predicted by a detection of denervation potentials such as fibrillation potentials or positive sharp waves in a group of muscles. Unfortunately, since denervation potentials are distinguished by examiner's experience, it is possible to make mistake identifying endplate spikes as a denervation potential. The aim of the study was to extract parameters to make an algorithm for quantitative distinction between denervation potentials and endplate spikes. It will help to minimize the examiner's bias and to localize the site of lesion thus increase the reliability on EMG diagnosis. There types of signals, endplate spike, fibrillation potential and positive sharp wave were obtained from the EDB(extensor digitorum brevis) muscle using then neuropathic patients. Eight parameters such as duration, area, slope, peak-to-peak amplitude, positive peak negative peak amplitude, ratio of positive to negative peak amplitude, and number of phase were extracted and compared. As a results, peak-to-peak amplitude, positive peak amplitude, ratio of positive to negative peak amplitude showed statistically significant differences between endplate spikes and denervation potentials. It was concluded that those parameters could be used to establish an algorithm which will improve the accuracies in automated quantitative EMG diagnosis.

• Journal of the Institute of Convergence Signal Processing
• /
• 제20권4호
• /
• pp.245-251
• /
• 2019

Sonar bearing accuracy is the correspondence between the target orientation predicted by sonar and actual target orientation, and is obtained from measurements. However, when measuring sonar bearing accuracy, many errors are included in the results because they are made at sea, where complex and diverse environmental factors are applied. In particular, parallax error caused by the difference between the position of the GPS receiver and the sonar sensor, and the time delay error generated between the speed of underwater sound waves and the speed of electromagnetic waves in the air have a great influence on the accuracy. Correcting these parallax errors and time delay errors without an automated tool is a laborious task. Therefore, in this study, we propose a sonar bearing accuracy measurement equipment with parallax error and time delay error correction. The tests were carried out through simulation data and real data. As a result of the test it was confirmed that the parallax error and time delay error were systematically corrected so that 51.7% for simulation data and more than 18.5% for real data. The proposed method is expected to improve the efficiency and accuracy of sonar system detection performance verification in the future.

• YAKHAK HOEJI
• /
• 제52권2호
• /
• pp.137-146
• /
• 2008

Even though driving under the influence of drug (DUID) is a worldwide problem, we, Korea has no regulation system yet except for alcohol, and there are little cases reported related to DUID. In order to investigate the type of abused drugs for drivers in Korea, we tried to analyze controlled and non-controlled drugs in alcohol-positive blood samples. 275 whole bloods, which were positive for alcohol on the roadside test, were collected from the police for two months ($Nov.{\sim}Dec.$ 2006). The analytical strategy was constituted of three steps: First, alcohol in blood samples were confirmed and quantified by gas chromatography. Second, controlled drugs were screened by $Evidence_{investigator}\;^{TM}$ (Randox, U.K.) as preliminary test. It was based on immunoassay by biochip array analyzer. Nine groups of drug abuse were screened: amphetamines, methamphetamines, cannabis, cocaine, opiates, barbiturates, methadone, benzodiazepines I (oxazepam) & II (lorazepam). Finally, confirmation of these drugs was performed by GC-MS. Blood samples were extracted by solid-phase extraction by $RapidTrace^{TM}$ (Zymark, U.S.A.). After trimethylsilyl (TMS) derivatization, eluates were analyzed to GC-MS. Total 49 drugs were investigated in this study including controlled drugs, antidepressants, 1st generation antihistamines, dextromethorphan, nalbuphine, ketamine, etc. For rapid detection, we developed the automated identification system. It was made up a new software, "DrugMan", modified Chemstation data analysis menu and newly developed macro modules. A series of peak selection, identification and reporting of the results were performed automatically by this system. Concentrations of alcohol in 275 blood samples were ranged from 0.011 to 0.249% (average, 0.119%). Among 149 blood samples, just six samples (4.0%) were showed positive results to the immunoassay: one methamphetamine and five benzodiazepines group I. By GC-MS confirmation, only benzodiazepines were detected and methamphetamine was not detected from immunoassay positive blood sample. Besides these drugs, 5 chlorpheniramines, dextromethorphan, diazepam, doxylamine, ibuprofen, lidocaine and topiramate were also detected in whole bloods by GC-MS. Conclusively, the frequency of drug abuse for Korean drivers was relatively low. There was none case which illegal drug was detected. However these results were limited to alcohol positive blood samples, so it is necessary to analyze more samples including alcohol negative blood.

• Journal of the Institute of Electronics and Information Engineers
• /
• 제52권6호
• /
• pp.107-116
• /
• 2015

In compliance with digital device growth, the proliferation of high-tech computers, the availability of high quality and inexpensive video cameras, the demands for automated video analysis is increasing, especially in field of intelligent monitor system, video compression and robot vision. That is why object tracking of computer vision comes into the spotlight. Tracking is the process of locating a moving object over time using a camera. The consideration of object's scale, rotation and shape deformation is the most important thing in robust object tracking. In this paper, we propose a robust object tracking scheme using Random Forest. Specifically, an object detection scheme based on region covariance and ZNCC(zeros mean normalized cross correlation) is adopted for estimating accurate object location. Next, the detected region will be divided into five regions for random forest-based learning. The five regions are verified by random forest. The verified regions are put into the model pool. Finally, the input model is updated for the object location correction when the region does not contain the object. The experiments shows that the proposed method produces better accurate performance with respect to object location than the existing methods.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• 제30권5호
• /
• pp.847-857
• /
• 2020

As IoT equipment is commercialized, Bluetooth or wireless networks will be built into general living devices such as IP cameras, door locks, cars and TVs. Security for IoT equipment is becoming more important because IoT equipment shares a lot of information through the network and collects personal information and operates the system. In addition, web-based attacks and application attacks currently account for a significant portion of cyber threats, and security experts are analyzing the vulnerabilities of cyber attacks through manual analysis to secure them. However, since it is virtually impossible to analyze vulnerabilities with only manual analysis, researchers studying system security are currently working on automated vulnerability detection systems, and Firm-AFL, published recently in USENIX, proposed a system by conducting a study on fuzzing processing speed and efficiency using a coverage-based fuzzer. However, the existing tools were focused on the fuzzing processing speed of the firmware, and as a result, they did not find any vulnerability in various paths. In this paper, we propose IoTFirmFuzz, which finds more paths, resolves constraints, and discovers more crashes by strengthening the mutation process to find vulnerabilities in various paths not found in existing tools.