• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.29 no.6
• /
• pp.1365-1373
• /
• 2019

Meltdown and Spectre are vulnerabilities that exploit out-of-order execution and speculative execution techniques to read memory regions that are not accessible with user privileges. OS patches were released to prevent this attack, but older systems without appropriate patches are still vulnerable. Currently, there are some research to detect Meltdown and Spectre attacks, but most of them proposed dynamic analysis methods. Therefore, this paper proposes a binary signature that can be used to detect Meltdown and Spectre malware without executing them. For this, we collected 13 malicious codes from GitHub and performed binary pattern analysis. Based on this, we proposed a static detection method for Meltdown and Spectre malware. Our results showed that the method identified all the 19 attack files with 0.94% false positive rate when applied to 2,317 normal files.

• The Journal of the Institute of Internet, Broadcasting and Communication
• /
• v.21 no.6
• /
• pp.1-8
• /
• 2021

The performance of hidden camera cameras is improving day by day due to miniaturization and advanced technology integration according to the speed of technological development of smartphones. As this external networking computing environment is advanced and diversified, exposure to hidden cameras in addition to general safety cameras is also increasing. On the other hand, the technology for detecting and preventing hidden cameras is not keeping up with the development and speed of these hidden cameras. Therefore, in this study, the heat of the hidden camera was detected using infrared thermal detection technology based on general image and thermal image synthesis technology, and the reflectance of each wavelength according to the difference in ambient temperature was analyzed to reduce the false positive rate.

• Journal of Gynecologic Oncology
• /
• v.29 no.6
• /
• pp.98.1-98.13
• /
• 2018

Objective: We describe a systematic review and meta-analysis of the performance of ${18}F$-fluorodeoxyglucose ($^{18}F-FDG$) positron emission tomography/computed tomography (PET/CT) for detecting metastasis in ovarian cancer. Methods: MEDLINE and Embase were searched for diagnostic accuracy studies that used $^{18}F-FDG$ PET or PET/CT for pre-treatment staging, using surgical findings as the reference standard. Sensitivities and specificities were pooled and plotted in a hierarchic summary receiver operating characteristic plot. Potential causes of heterogeneity were explored through sensitivity analyses. Results: Eight studies with 594 patients were included. The overall pooled sensitivity and specificity for metastasis were 0.72 (95% confidence interval [CI]=0.61-0.81) and 0.93 (95% CI=0.85-0.97), respectively. There was considerable heterogeneity in sensitivity ($I^2=97.57%$) and specificity ($I^2=96.74%$). In sensitivity analyses, studies that used laparotomy as the reference standard showed significantly higher sensitivity and specificity (0.77; 95% CI=0.67-0.87 and 0.96; 95% CI=0.92-0.99, respectively) than those including diagnostic laparoscopy (0.62; 95% CI=0.46-0.77 and 0.84; 95% CI=0.69-0.99, respectively). Higher specificity was shown in studies that confirmed surgical findings by pathologic evaluation (0.95; 95% CI=0.90-0.99) than in a study without pathologic confirmation (0.69; 95% CI=0.24-1.00). Studies with a lower prevalence of the FDG-avid subtype showed higher specificity (0.97; 95% CI=0.94-1.00) than those with a greater prevalence (0.89; 95% CI=0.80-0.97). Conclusion: Pre-treatment $^{18}F-FDG$ PET/CT shows moderate sensitivity and high specificity for detecting metastasis in ovarian cancer. With its low false-positive rate, it can help select surgical approaches or alternative treatment options.

• Biomedical Science Letters
• /
• v.28 no.2
• /
• pp.109-119
• /
• 2022

Histone proteins can be modified by the addition of acetyl group or methyl group to specific amino acids. The modifications have different distribution patterns in chromatin. Recently, histone modifications are studied based on ChIP-seq data, which requires reasonable analysis of sequencing data depending on their distribution patterns. Here we have analyzed histone H3K27ac and H3K27me3 ChIP-seq data and it showed that the H3K27ac is enriched at narrow regions while H3K27me3 distributes broadly. To properly analyze the ChIP-seq data, we called peaks for H3K27ac and H3K27me3 using MACS2 (narrow option and broad option) and SICER methods, and compared propriety of the peaks using signal-to-background ratio. As results, H3K27ac-enriched regions were well identified by both methods while H3K27me3 peaks were properly identified by SICER, which indicates that peak calling method is more critical for histone modifications distributed broadly. When ChIP-seq data were compared in different sequencing depth (15, 30, 60, 120 M), high sequencing depth caused high false-positive rate in H3K27ac peak calling, but it reflected more properly the broad distribution pattern of H3K27me3. These results suggest that sequencing depth affects peak calling from ChIP-seq data and high sequencing depth is required for H3K27me3. Taken together, peak calling tool and sequencing depth should be chosen depending on the distribution pattern of histone modification in ChIP-seq analysis.

• International Journal of Computer Science & Network Security
• /
• v.23 no.8
• /
• pp.17-25
• /
• 2023

The alarming global prevalence of Type 2 Diabetes Mellitus (T2DM) has catalyzed an urgent need for robust, early diagnostic methodologies. This study unveils a pioneering approach to predicting T2DM, employing the Extreme Gradient Boosting (XGBoost) algorithm, renowned for its predictive accuracy and computational efficiency. The investigation harnesses a meticulously curated dataset of 4303 samples, extracted from a comprehensive Chinese research study, scrupulously aligned with the World Health Organization's indicators and standards. The dataset encapsulates a multifaceted spectrum of clinical, demographic, and lifestyle attributes. Through an intricate process of hyperparameter optimization, the XGBoost model exhibited an unparalleled best score, elucidating a distinctive combination of parameters such as a learning rate of 0.1, max depth of 3, 150 estimators, and specific colsample strategies. The model's validation accuracy of 0.957, coupled with a sensitivity of 0.9898 and specificity of 0.8897, underlines its robustness in classifying T2DM. A detailed analysis of the confusion matrix further substantiated the model's diagnostic prowess, with an F1-score of 0.9308, illustrating its balanced performance in true positive and negative classifications. The precision and recall metrics provided nuanced insights into the model's ability to minimize false predictions, thereby enhancing its clinical applicability. The research findings not only underline the remarkable efficacy of XGBoost in T2DM prediction but also contribute to the burgeoning field of machine learning applications in personalized healthcare. By elucidating a novel paradigm that accentuates the synergistic integration of multifaceted clinical parameters, this study fosters a promising avenue for precise early detection, risk stratification, and patient-centric intervention in diabetes care. The research serves as a beacon, inspiring further exploration and innovation in leveraging advanced analytical techniques for transformative impacts on predictive diagnostics and chronic disease management.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.33 no.2
• /
• pp.253-266
• /
• 2023

The Null Pointer Dereference vulnerability is a significant vulnerability that can cause severe attacks such as denial-of-service. Previous research has proposed methods for detecting vulnerabilities, but large and complex programs pose a challenge to their efficiency. In this paper, we present a lightweight tool for detecting specific functions in large binaryprograms through symbolizing variables and emulating program execution. The tool detects vulnerabilities through data dependency analysis and heuristics in each execution path. While our tool had an 8% higher false positive rate than the bap_toolkit, it detected all existing vulnerabilities in our dataset.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2021.10a
• /
• pp.449-451
• /
• 2021

Cyber-attacks targeting endpoints have developed sophisticatedly into targeted and intelligent attacks, Advanced Persistent Threat (APT) targeting the Industrial Internet of Things (IIoT) has increased accordingly. Machine learning-based Endpoint Detection and Response (EDR) solutions combine and complement rule-based conventional security tools to effectively defend against APT attacks are gaining attention. However, universal EDR solutions have a high false positive rate, and needs high-level analysts to monitor and analyze a tremendous amount of alerts. Therefore, the process of optimizing machine learning-based EDR solutions that consider the characteristics and vulnerabilities of IIoT environment is essential. In this study, we analyze the flow and impact of IIoT targeted APT cases and compare the method of machine learning-based APT detection EDR solutions.

• Journal of The Korean Society of Inherited Metabolic disease
• /
• v.12 no.1
• /
• pp.58-63
• /
• 2012

Classical galactosemia (OMIM# 230400) is an autosomal recessive disorder of carbohydrate metabolism, due to a complete loss in galactose-1-phosphate uridyltransferase (GALT; E.C.2.7.7.12) enzyme activity. It caused by mutations in the GALT gene (OMIM$^*$ 606999) that is located at chromosome 9p13. The GALT enzyme deficiency results in a build-up of galactose and galactose-1-phosphate, causing life threatening complications such as feeding problems, failure to thrive, hepatocellular damage, bleeding and sepsis. However, Duarte galactosemia, a variant form of GALT deficiency, has residual GALT enzyme activities in erythrocytes and do not have manifest the symptoms of classical galactosemia. Since the advent of newborn screening (NBS) for galactosemia, we rarely encounter such overwhelmingly ill newborns. The positive NBS with no symptoms indicates the possibility of Duarte galactosemia besides a simple false positive and it has to be differentiated from classical galactosemia which is a medical emergency. In Korea, detection rate of Duarte galactosemia is very low and its genetic information is restrictive, too. We report a case of monozygotic twins with D/G galactosemia compound heterozygote in proven by the mutational analysis of GALT gene, which revealed N314D polymorphism and -119 to -116 delGTCA.

• Korean Journal of Veterinary Service
• /
• v.45 no.1
• /
• pp.1-11
• /
• 2022

A novel porcine circovirus 4 (PCV4) was recently identified in Chinese and Korean pig herds. Although several conventional polymerase chain reaction (cPCR) and real-time PCR (qPCR) assays were used for PCV4 detection, more sensitive and reliable qPCR assay is needed that can simultaneously detect PCV4 and internal positive control (IPC) to avoid false-negative results. In the present study, a duplex qPCR (dqPCR) assay was developed using primers/probe sets targeting the PCV4 Cap gene and pig (glyceraldehyde-3-phosphate dehydrogenase) GAPDH gene as an IPC. The developed dqPCR assay was specifically detected PCV4 but not other PCVs and porcine pathogens, indicating that the newly designed primers/probe set is specific to the PCV4 Cap gene. Furthermore, GAPDH was stably amplified by the dqPCR in all tested viral and clinical samples containing pig cellular materials, indicating the high reliability of the dqPCR assay. The limit of detection of the assay 5 copies of the target PCV4 genes, but the sensitivity of the assay was higher than that of the previously described assays. The assay demonstrated high repeatability and reproducibility, with coefficients of intra-assay and inter-assay variation of less than 1.0%. Clinical evaluation using 102 diseased pig samples from 18 pig farms showed that PCV4 circulated in the Korean pig population. The detection rate of PCV4 obtained using the newly developed dqPCR was 26.5% (27/102), which was higher than that obtained using the previously described cPCR and TaqMan probe-based qPCR and similar to that obtained using the previously described SYBR Green-based qPCR. The dqPCR assay with IPC is highly specific, sensitive, and reliable for detecting PCV4 from clinical samples, and it will be useful for etiological diagnosis, epidemiological study, and control of the PCV4 infections.

• Advances in pediatric surgery
• /
• v.7 no.2
• /
• pp.95-104
• /
• 2001

Biliary atresia (BA) is very difficult to distinguish from neonatal hepatitis (NH) and its prognosis depends on the age at the time of Kasai operation. Therefore early differentiation between these two conditions is very important. Although various clinical and laboratory tests have been reported to differentiate between them, they are still of limited value. From 1980 to 1999, forty-five infants were referred to our pediatric surgical unit for operation for suspected BA. Eight patients underwent Kasai operation immediately because of late diagnosis. These were excluded from the study. The clinical history, physical findings. radiologic and laboratory examinations of 37 cases were analyzed retrospectively. The average age of BA (n=20) was $55.1{\pm}16.7$ days, and that of NH (n=17) was $55.8{\pm}15.6$ days. The sex ratio of BA was 13:7, and that of NH was 14:3. All the patients had obstructive jaundice and acholic stool except 4 BA and 6 NH patients. Acholic stool with yellow component was more frequent in NH. Onset of jaundice was within 2 weeks after birth in 85 % of BA, and in 65% of NH. The onset of acholic stool was within 2 weeks after birth in 60 % of BA, and in 23.5 % of NH. The duration of jaundice and acholic stool of BA were $50.9{\pm}16.6$ days and $41.3{\pm}18.4$ days and those of NH were $40.1{\pm}23.1$ days and $26.6{\pm}25.4$ days respectively. The ultrasonogram and hepatobiliary scan were useful, but not a definitively reliable method for the differentiation of these two diseases. There was no difference in laboratory data. Seventeen cases had NH among 45 referred cases for Kasai operation with the clinical impression of BA, and 4 cases of 17 NH cases needed to be explored to rule out BA. In conclusion. false positive rate of clinical impression of BA was 37.8 %. and negative exploration rate was 8.9 %, Therefore. careful clinical observation for 1-2 weeks by an experienced pediatric surgeon was very important to avoid unnecessary operation to rule out NH up to the age of 8 - 10 weeks. so long as the stool had yellow component.