• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.28 no.3
• /
• pp.591-603
• /
• 2018

Windows Event Log is a format that records system log in Windows operating system and methodically manages information about system operation. An event can be caused by system itself or by user's specific actions, and some event logs can be used for corporate security audits, malware detection and so on. In this paper, we choose actions related to corporate security audit and malware detection (External storage connection, Application install, Shared folder usage, Printer usage, Remote connection/disconnection, File/Registry manipulation, Process creation, DNS query, Windows service, PC startup/shutdown, Log on/off, Power saving mode, Network connection/disconnection, Event log deletion and System time change), which can be detected through event log analysis and classify event IDs that occur in each situation. Also, the existing event log tools only include functions related to the EVTX file parse and it is difficult to track user's behavior when used in a forensic investigation. So we implemented new analysis tool in this study which parses EVTX files and user behaviors.

• Journal of Oral Medicine and Pain
• /
• v.45 no.3
• /
• pp.56-64
• /
• 2020

Purpose: Temporomandibular disorders (TMD) is a mosaic of clinical signs and symptoms that can be regarded as a set of phenotypes that are affected by various factors including pain sensitivity, pain disability, sleep and psychological functioning. The aims of this study were to evaluate association of pain experience, sleep quality and psychological distress with different phenotypes of TMD patients. Methods: This retrospective study included a cohort (n=1,858; 63.8% for female, mean age=34.9±15.9 years) of patients with TMD. A set of self-administered questionnaires concerning pain interference (Brief Pain Inventory), pain disability (Graded Chronic Pain Scale), sleep quality (Pittsburg Sleep Questionnaire Index), psychological distress (Symptom Checklist-90 revised), and pain catastrophizing (Pain Catastrophizing Scale) were administered to all participants at the first consultation. All TMD patients were classified into four groups including TMD with internal derangement without pain (TMD_ID, n=370), TMD with joint pain (TMD_J, n=571), TMD with muscle pain (TMD_M, n=541) and TMD with muscle-joint combined pain (TMD_MJ, n=376). Results: The female ratio was particularly high in the group with TMD_MJ (p=0.001). The patients with muscle pain and both muscle and joint pain had longer symptom duration (p=0.004) and presented significantly higher scores in pain experience (p<0.001), subjective sleep quality (p<0.001), pain catastrophizing (p<0.001) and psychological distress (p<0.05) except for paranoid-ideation than the groups with only joint problems. Conclusions: The results of this study highlight the importance of multi-dimensional approach that consider pain disability, sleep quality, and psychological functioning in the management of TMD with muscle component. This study would contribute to a better understanding of interaction between heterogeneous TMD and multiple risk factors in order to build tailored treatment based on different phenotypes.

• Analytical Science and Technology
• /
• v.27 no.3
• /
• pp.140-146
• /
• 2014

An internal standard was used in PCID (post column isotope dilution) to improve the accuracy and precision in quantification of various chemical species. The error occurring in the column was the largest in HPLC-ICP/MS (high performance liquid chromatography-inductively coupled plasma/mass spectrometry) when PCID and other traditional quantification methods were compared with each other. Internal standard was effective in correcting the loss of sample in the column to improve accuracy and precision. When applied to SeMet, using MeSecys or $Se^{4+}$ as an internal standard, relative errors were reduced from 31% and 13% to less than 1%, while standard deviations were reduced from 5.1% and 6.9% to 1.5% and 0.2%, respectively. Positive aspects of using an internal standard in PCID were compared with other quantitative techniques and discussed in detail.

• Journal of the Korean Society for Precision Engineering
• /
• v.23 no.6 s.183
• /
• pp.96-103
• /
• 2006

To establish of standard technique of nano-length measurement in 2D plane, new AFM system has been designed. In the long range (about several tens of ${\mu}m$), measurement uncertainty is dominantly affected by the Abbe error of XY scanning stage. No linear stage is perfectly straight; in other words, every scanning stage is subject to tilting, pitch and yaw motion. In this paper, an AFM system with minimum offset of XY sensing is designed. And XY scanning stage is designed to minimize rotation angle because Abbe errors occur through the multiply of offset and rotation angle. To minimize the rotation angle optimal design has performed by maximizing the stiffness ratio of motion direction to the parasitic motion direction of each stage. This paper describes the design scheme of full AFM system, especially about XY stage. Full range of fabricated XY scanner is $100{\mu}m\times100{\mu}m$. And tilting, pitch and yaw motion are measured by autocollimator to evaluate the performance of XY stage. As a result, XY scanner can have good performance. Using this AFM system, 3um pitch specimen was measured. The uncertainty of total system has been evaluated. X and Y direction performance is different. X-direction measuring performance is better. So to evaluate only ID pitch length, X-direction scanning is preferable. Its expanded uncertainty(k=2) is $\sqrt{(3.96)^2+(4.10\times10^{-5}{\times}p)^2}$ measured length in nm.

• Journal of Korea Multimedia Society
• /
• v.8 no.4
• /
• pp.525-535
• /
• 2005

A password-based authenticated tripartite key exchange protocol based on A. Joux's protocol was proposed. By using encryption scheme with shared password, we can resolve man-in-the-middle attack and lack of authentication problems. We also suggested a scheme to avoid the offline dictionary attack to which symmetric encryption schemes are vulnerable. The proposed protocol does not require a trusted party which is required in certificate or identity based authentication schemes. Therefore in a ad hoc network which is difficult to install network infrastructure, the proposed protocol would be very useful. The proposed protocol is more efficient in computation aspect than any existing password-based authenticated tripartite key exchange protocols. When it is used as a base line protocol of tree based group key exchange protocol, the computational weak points of the proposed protocol are compensated.

• Journal of the Korean Society for Library and Information Science
• /
• v.38 no.3
• /
• pp.201-219
• /
• 2004

The Library, Museum and Art Museum are gradually expanding access to cultural contents for general public through the distributed network. However, unlike general contents in cultural contents characteristics most the objects of cultural contents seldom contain the words used for organization and search for information. In addition, it's hard to share or interconnect information between different systems because the names, expressions and meanings are different between metadata elements of various cultural contents. In order to solve this problem, proper organization and management of metadata is vital. In this study, the researcher have comparatively analyzed the data elements of each format based on National Library of Korea, National Museum of Korea, National Museum of Contemporary Art , the metadata formats approached from various aspects in the cultural contents area, the researcher tried to provide the basic materials for integration of cultural contents by securing interoperability of different metadata formats.

• The Journal of the Korea institute of electronic communication sciences
• /
• v.2 no.1
• /
• pp.19-24
• /
• 2007

Abstract. In the ubiquitous environment of the next generation, RFID is predicted to occupy an important technical location and also expected to apply to various fields. However, the properties of tags in itself which is the core of RFID have a dysfunction like an invasion of privacy for user. An existing cryptanalytic protection scheme of the information leakage have a difficult problem to apply to RFID tags for privacy protection. We applied Ohkubo et al.'s scheme to the protection of the tag's information efficiently in the RFID system environment using low-cost tags. But, this method has all informations of tagsto identify tag's ID and then performs the process of identification in sequence in the Back-end server. These processes have lots of computations so that it have problems about a scalability. In this paper, we are based on Ohkubo et al.'s scheme to solve problems, and then analyze the parallelism with the Hellman's tradeoff method, divide it into nodesin parallel. In this paper, we are based on Okubo et al.'s scheme to solve problems, and then analyze the parallelism with Hellman's tradeoff method, divide it into the ${\omega}$ node in parallel. as a result, we can reduce the computing complexity of key search to $O(\frac{m^{2/3}n^{2/3}}{\omega})$ seconds from O(mm) seconds. finally we show the results to be enhanced the scalability.

• Analytical Science and Technology
• /
• v.13 no.3
• /
• pp.297-303
• /
• 2000

Isotope-dilution inductively coupled plasma mass spectrometry was used to determine trace amounts of Cd, Cu, Pb, Ni and Zn in sediment. Sediment samples were dissolved by microwave digestion with addition of mixed acid ($HNO_3$, HF and $HClO_4$). Lead was determined after separation of alkaline and alkaline earth metals by an ammonium pyrrolidenedithiocarbarmate (APDC) solvent extraction. The other elements were determined after separation of iron, tin and titanium by hydroxide precipitation. Recovery efficiency of the analyte elements was not satisfactory, but most of matrix elements causing the isobaric interference could be effectively eliminated by the separation. Good agreement was achieved with the certified values in the analysis of the two sediment reference materials.

• The Journal of the Korea Contents Association
• /
• v.4 no.4
• /
• pp.89-97
• /
• 2004

Web-Mail Services are implemented with SMTP and POP3 in these days. These web mail services provide not only the basic sending and receiving functions but also additional functions for user. However, the sent and received data are stored in the web mail server. So general web mail users can't process their mail data if they have not access ID for the web mail server. In this paper, we design and implement WMIS (Web Mail Integration System) using XML. In the proposed system, mail data and user's environments in the old web mail system are transformed into XML documents and inserted into database. In order to store XML data into database, we use dynamic document processing method and analyze XML file by record unit. When the users change their mail accounts, they easily can establish the web environments and their mail data. Because the transformed XML document is converted into WML easily, the WMIS can reduce development cost, labors and time.

• KIPS Transactions on Software and Data Engineering
• /
• v.3 no.8
• /
• pp.293-298
• /
• 2014

Detecting and understanding the changes between RDF data is crucial in the evolutionary process, synchronization system, and versioning system on the web of data. However, current researches on detecting changes still remain unsatisfactory in that they did neither consider the large scale of RDF data nor accurately produce the RDF deltas. In this paper, we propose a scalable and effective change detection using a MapReduce framework which has been used in many fields to process and analyze large volumes of data. In particular, we focus on the structure-based change detection that adopts a strategy for the comparison of blank nodes in RDF data. To achieve this, we employ a method which is composed of two MapReduce jobs. First job partitions the triples with blank nodes by grouping each triple with the same blank node ID and then computes the incoming path to the blank node. Second job partitions the triples with the same path and matchs blank nodes with the Hungarian method. In experiments, we show that our approach is more accurate and effective than the previous approach.