• Convergence Security Journal
• /
• v.20 no.4
• /
• pp.125-134
• /
• 2020

The potential security threat is increasing as the supply of ICT products to the defense sector increases with the development of information and communication technology. Attempts to neutralize, such as intelligence gathering and destruction, through attacks on the defense power support system and the intelligence system of the weapons system could pose a fatal threat.Therefore, security measures of supply chain shear system that take into account ICT product production and operation stage to maintenance stage are needed in defense field. In the paper, technical and administrative measures for responding to 12 ICT supply chain security threats at each stage of the defense ICT supply chain life cycle were presented.

• Journal of Platform Technology
• /
• v.11 no.2
• /
• pp.15-25
• /
• 2023

This study analyzes the limitations of the insider threat datasets used for insider threat detection research and compares and analyzes the solution-based insider threat data with public insider threat data using a security solution to overcome this. Through this, we design a data format suitable for insider threat detection and implement a system that can safely share insider threat information between different institutions and companies using blockchain technology. Currently, there is no dataset collected based on actual events in the insider threat dataset that is revealed to researchers. Public datasets are virtual synthetic data randomly created for research, and when used as a learning model, there are many limitations in the real environment. In this study, to improve these limitations, a private blockchain was designed to secure information sharing between institutions of different affiliations, and a method was derived to increase reliability and maintain information integrity and consistency through agreement and verification among participants. The proposed method is expected to collect data through an outflow threat collector and collect quality data sets that posed a threat, not synthetic data, through a blockchain-based sharing system, to solve the current outflow threat dataset problem and contribute to the insider threat detection model in the future.

• Convergence Security Journal
• /
• v.22 no.1
• /
• pp.19-27
• /
• 2022

With the innovative development of ICT technology, hacking techniques of hackers are also evolving into sophisticated and intelligent hacking techniques. Threat detection research to counter these cyber threats was mainly conducted in a passive way through hacking damage investigation and analysis, but recently, the importance of cyber threat information collection and analysis is increasing. A bot-type automation program is a rather active method of extracting malicious code by visiting a website to collect threat information or detect threats. However, this method also has a limitation in that it cannot prevent hacking damage because it is a method to identify hacking damage because malicious code has already been distributed or after being hacked. Therefore, to overcome these limitations, we propose a model that detects actual threats by acquiring and analyzing threat information while identifying and managing cyber bases. This model is an active and proactive method of collecting threat information or detecting threats outside the boundary such as a firewall. We designed a model for detecting threats using cyber strongholds and validated them in the defense environment.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.29 no.3
• /
• pp.657-673
• /
• 2019

As various IT and OT systems such as Electronic Chart Display and Information System and Automatic Identification System are used for ships, security elements that take into account even the ship's construction and navigation environment are required. However, cyber security research on the ship and shipbuilding ICT equipment industries is still lacking, and there is a lack of systematic methodologies through threat modeling. In this paper, the Data Flow Diagram was established in consideration of stakeholders approaching the ship system. Based on the Attack Library, which collects the security vulnerabilities and cases of ship systems, STRIDE methodologies and threat modeling using the Attack Tree are designed to identify possible threats from ships and to present ship cyber security measures.

• Journal of Platform Technology
• /
• v.12 no.1
• /
• pp.91-105
• /
• 2024

As the number of cases of applying IT systems to the existing isolated ICS (Industrial Control System) network environment continues to increase, security threats in the ICS environment have rapidly increased. Security threat scenarios help to design security strategies in cybersecurity training, including analysis, prediction, and response to cyberattacks. For successful cybersecurity training, research is needed to develop valid and reliable security threat scenarios for meaningful training. Therefore, this paper proposes a case-based security threat scenario development methodology for cybersecurity training in the ICS environment. To this end, we develop a methodology consisting of five steps based on analyzing actual cybersecurity incident cases targeting ICS. Threat techniques are standardized in the same form using objective data based on the MITER ATT&CK framework, and then a list of CVEs and CWEs corresponding to the threat technique is identified. Additionally, it analyzes and identifies vulnerable functions in programming used in CWE and ICS assets. Based on the data generated up to the previous stage, develop security threat scenarios for cybersecurity training for new ICS. As a result of verification through a comparative analysis between the proposed methodology and existing research confirmed that the proposed method was more effective than the existing method regarding scenario validity, appropriateness of evidence, and development of various scenarios.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.18 no.6
• /
• pp.1249-1254
• /
• 2014

As ICT ecosystem changes, security-related threat on individuals and corporations has increased. With the recent sophistication of hacking strategy, hacking serves commerce and its scale becomes larger than ever. Accordingly, the analysis on cyber intrusion is required. As a number one electronic government around the world, the government's role for security solution for realization of safe electronic government. This manuscript analyzes cyber intrusion cases, speculates the government's measures and suggests political recommendation for the current phenomena.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.25 no.2
• /
• pp.411-421
• /
• 2015

These days, a conversion of the fast-advancing ICT (Information and Communications Technologies) and the IoT (Internet of Things) has been in progress. However, these conversion Technology could lead to many of the security threat existing in the ICT environment. The security threats of car in the IoT environment could cause the property damage and casualty. There are the inadequate preparations for the car security and the difficulty of detection for the security threats by itself. In this paper, we proposed the decision-making framework for the anomaly detection and found out what are the threats of car in the IoT environment. The discrimination of the factor, path and type of threats from the attack against the car should take priority over the self-inspection and the swift handling of the attack on control system.

• Journal of Information Technology Applications and Management
• /
• v.29 no.4
• /
• pp.1-16
• /
• 2022

This study analyzed the policy dilemma for ICT SMEs venture companies that changed after COVID-19 based on the results of the cognitive map analysis for ICT SMEs venture policies. First, as a result of analyzing the cognitive map of ICT SMEs venture companies that have changed since COVID-19, ICT venture companies are expanding support for ICT venture companies due to the threat of COVID-19. However, in order to convert COVID-19 into an opportunity factor, it also shows a policy direction to achieve innovative growth by creating a new market through non-face-to-face industry revitalization based on digital transformation (digital new deal). As a result of the study, the policy measures of supporting DNA-centered convergence innovation technology, digital transformation (digital new deal), fostering ICT startups (K-Global project), and expanding support for ICT SMEs did not have a policy dilemma. However, although many support has been expanded for ICT SMEs due to COVID-19, it is difficult to find and foster ICT start-up companies, and globalization problems are occurring due to the decrease in exports to COVID-19, making it difficult to create new markets. There is a negative (-) perception of causality that ICT SMEs venture companies may face risks as jobs decrease and innovative growth cannot be led to the revitalization of the non-face-to-face industry. Therefore, it was found that both the flow of causal relationship between the expansion of support for ICT SMEs and the high growth of ICT SMEs is not + and has a policy dilemma in part.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2023.05a
• /
• pp.190-191
• /
• 2023

IoT(Internet of Things) 기술을 기반으로 한 드론은 사용자의 요청에 따라 데이터 처리, 수집, 송·수신 등에 고도화된 ICT(Information and Communications Technology) 기술을 활용하고 있다. 또한, 드론은 ICT 기술이 발전함에 따라 문화, 소방, 국방 등 다양한 분야에 적용되어 사용자에게 편의를 제공하고 있다. 그러나, 드론에 적용되는 ICT 기술과 드론에 탑재되는 기술들이 고도화됨에 따라 드론 모듈 내 펌웨어 및 무선 네트워크를 대상으로 한 보안위협이 증가하고 있다. 따라서 본 논문은 드론의 보안위협에 대응하기 위하여 드론 임베디드 시스템 및 네트워크 프로토콜을 대상으로한 최신 보안위협 동향을 분석한다.

• Journal of Korea Trade
• /
• v.25 no.4
• /
• pp.146-163
• /
• 2021

Purpose - This paper examines China's impact on Korea's ICT exports considering the direct competition channel, the production shift channel, and the indirect demand channel at once. This paper also takes China's economic rebalancing into account and discusses whether it makes any differences in the effect of the three channels. Design/methodology - To quantify the effect of the three channels, I constructed a linear panel regression model and estimated it with various estimation methods including the system GMM. China's exports toward the same destination as Korea's exports, Korea's exports toward China, and the third countries' exports toward China respectively reflect the three channels. China's GVC indicators are included as well to evaluate the effect of further China's economic rebalancing. Since the present paper has a greater interest in the effect of China rather than the determinant of bilateral trade, a (fixed effect) panel model becomes more appropriate than the gravity model because timeinvariant variables in the gravity model, such as the distance and the language, are eliminated during the estimation process. Findings - The estimation results indicate that Chinese ICT exports are complementary to Korea's ICT exports in general. However, when markets are considered in subgroups, China's ICT exports could have a negative effect in the long run, especially for SITC75 and SITC76 markets, implying a possible competitive threat of China. The production shift effect turns significant during China's economic rebalancing in the markets for the advanced economies and the SITC76 product. China's indirect demand channel is also in effect significantly for the advanced economy and SITC75 commodities during China's economic rebalancing periods. In addition, this paper shows that China's transition toward upstream in the global value chain could have a positive impact on Korea's ICT exports, especially at the Asian market. Originality/value - The contribution of this paper is threefold. First, it focuses on the ICT industry for which Korea increasingly depends on China and China becomes a global hub of the GVC. Second, this paper quantitatively studies three channels in a model in contrast to the literature which mostly examines those channels separately and pays less attention to the GVC aspect. Third, by utilizing relatively recent data from the period of 2001-2017, this paper discusses whether China's economic rebalancing affects the three channels.