• Review of KIISC
• /
• v.3 no.3
• /
• pp.31-39
• /
• 1993

IOS/IEC JTC1/SC27의 국제표준소개의 첫번째 편으로 DIS 9797을 소개한다. 이것은 1989년에 1차로 국제표준이 되었다가 결함이 발견되어 다시 작업이 시작되어 1992년 10월 SC27정기총회에서 CD(Committee Draft)에서 수정후 DIS(Draft Internationa Standard) 수준으로 올리기로 하여 1993년 3월 DIS로서 표결에 부쳐진 문서이다. 이해를 돕기 위하여 국문뒤에 원문을 덧붙였다. 번역이 적절하지 않거나 더 좋은 표현이 있으면 역자에게 알려주면 참고하여 추후의 수정본에 반영하겠다.

• Journal of the Korea Society of Computer and Information
• /
• v.26 no.3
• /
• pp.143-146
• /
• 2021

Korean police have been established as a national police system since the liberation of Korea and have been operated as a centralized police system for a long time, and a police committee was established under the enactment of the Police Act in 1991. However, the National Police Commission has a problem that it cannot perform the functions of the original National Police Commission because it is only a simple advisory body, not an institution that reviews and decides major policies related to police administration. As a result, despite the passage of a full amendment to the Police Act in 2020 and the revision of the Act to the Organization and Operation of the National Police and Local Police, operational and compositional problems still exist. Therefore, this study intends to propose the current state of operation and problems of the police committee system and measures for improvement.

• The Journal of Society for e-Business Studies
• /
• v.20 no.3
• /
• pp.47-58
• /
• 2015

Recently, new information security vulnerabilities have proliferated with the convergence of information security environments and information and communication technology. Accordingly, new types of cybercrime are on the rise, and security breaches and other security-related incidents are increasing rapidly because of security problems like external cyberattacks, leakage by insiders, etc. These threats will continue to multiply as industry and technology converge. Thus, the main purpose of this paper is to design and present security subjects in order to train professional security management talent who can deal with the enhanced threat to information. To achieve this, the study first set key information security topics for business settings on the basis of an analysis of preceding studies and the results of a meeting of an expert committee. The information security curriculum taxonomy is developed with reference to an information security job taxonomy for domestic conditions in South Korea. The results of this study are expected to help train skilled security talent who can address new security threats in the future environment of industrial convergence.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.11 no.5
• /
• pp.53-62
• /
• 2001

Fast diffusion of personal computer and network, and developed security technology are augmenting specific gravity of convenient and safe electronic voting system supplementing much problems of existent off-line vote form. But in spite of enlargement of these weight, much limitations are extravagant. Specially, problem that secure voter\`s anonymousness and accuracy of poll can be important urea that judge if electronic voting system can be applied actually. Also, problems such as buying and selling of vote remain to subject that must solve yet. In this paper, we introduce items that is considered to design the safe electronic voting system, and present limitation of electronic polling system announced in [1]. And we propose improvement way. Improved protocol keeping advantages that is presented in [1], designed to keep away voter\`s anonymousness defamation by conspiracy of Election Administration Committee and Totaling Committee, and block unlawful election intervention as original.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2002.04b
• /
• pp.931-934
• /
• 2002

현재의 e-비즈니스 환경은 단순히 웹사이트를 구축 및 운용하는 차원을 넘어, 시간이 지남에 따라 급격한 진화 과정을 거치고 있다. 진화의 초점으로 떠오르고 있는 웹서비스 중 SAML(Security Assertions Markup Language)은 사용자 인증 정보 교환에 관한 프레임워크로 OASIS XML 보안 서비스 기술 위원회(OASIS XML-Security Service Technical Committee)에서 표준화 작업을 진행하고 있다. SAML은 S2ML(Security Services Markup Language)의 원리와 구조를 재사용해서 S2ML의 이점을 공유 하고 Single Sign-On, 인증 서비스, B2B Transaction, Sessioning같은 기능을 가진다. 그로 인해 다양한 정책기반의 산업에서 보안 시스템, 자바 어플리케이션 서버, XML 메시징 프레임워크와 오퍼레이팅 플랫폼사이에 인증, 승인과 함께 프로필 정보를 교환하기 위해 사용된다. 본 논문에서는 SAML의 범위와 목적 그리고 유즈케이스 모델과 시나리오를 통해 기본 구조와 쓰임새에 대해서 알아본다.

• Journal of the Society of Disaster Information
• /
• v.12 no.2
• /
• pp.176-180
• /
• 2016

The full extent of damage depend greatly on the quick and rational decision making by the incident commander soon after the disaster. The decision that everybody should wait by the captain, not to enter into the ship by the first dispatched incident commander, broadcasting failure have brought about a huge loss of life at Sewol cruise ship incident. Thus this study reviews the training and education system supporting the rational crisis decision making performed by the incident commander to cut off the expansion of disaster which is caused by the failure of the incident situation awareness and the decision making described above.

• Review of KIISC
• /
• v.5 no.2
• /
• pp.97-101
• /
• 1995

지난 세번에 걸쳐 소개하던 실체인증기법을 중단하고 이번호 부터는 해쉬함수 국제표준을 소개한다. 국내에서도 표준화 노력이 진행되고 있는 해쉬함수는 임의의 길이의 비트스트링을 정해진 길이의 출력인 해쉬코드로 변환시키는 함수로서 디지탈서명, 인증. 키 분배등의 많은 적용사례를 갖고 있다. 해쉬함수의 표준화 과제는 1984년 디지탈서명 국제표준화 과제중 한 part로 시작했다가 1989년 독립된 과제가 되었다 그 당시에는 2개의 part(Part 1 : General. Part 2 : Hash-functions using an n-bit block cipher algorithm)로 시작되었다가 나중에 2개의 part (Part 3 : Dedicated hash-functions, Part 4 : Hash-functions using modular arithmetic)가 추가되었다. 이 과제는 1991년 CD(Committee Draft), 1992년 DIS(Draft for International Standard)가 되었고. 1993년에 IS(International Standard)가 되었고 1998년 1차 검토가 있을 예정이다.

• Journal of the Society of Disaster Information
• /
• v.9 no.1
• /
• pp.97-104
• /
• 2013

Locally and abroad, people's anxiety is now at a high due to CBRNE accidents. The accidents occur by various causes, and the scale of disaster could be enlarged. In this study, we focused on CBRNE education training program as a way of reducting damage of CBRNE accidents which could harm unspecified individuals and drew a parallel by a comparative analysis about CBRNE educational programs of domestic institutions.

• Review of KIISC
• /
• v.20 no.4
• /
• pp.34-41
• /
• 2010

2009년 발생한 DDoS 사태는 정보통신 인프라에 대한 높은 의존도를 나타내는 국내 산업에 있어 보안사고가 심각한 업무 중단 사태를 나타낼 수 있음을 보여주었고 정보통신 인프라 측면에서 사업연속성에 대한 대비체계가 필요함을 시사하고 있다. 국제 표준화 기구인 ISO(International Standard Organization)에서는 보안 사고에 국한된 개념이 아닌 사업연속성을 방해하는 모든 재난 및 재해에 대한 대비체계를 미국, 영국, 호주, 일본 등 재난관리 선진국의 표준을 총망라하여 TC(Technical Committee) 223을 통해 표준(안)으로서 제시하고 있다. TC223 표준(안)의 핵심은 사건, 사고에 대한 대비 및 운영 연속성 관리를 의미하는 IPOCM(Incedent Preparedness and Operational Continuity Management) 프레임워크이며 이러한 IPOCM의 개념은 정보통신 인프라 측면에서 사업 연속성에 대한 가이드라인을 제공하는 SC(Standard Committee) 27의 "ISO/IEC 27031 Guidelines for ICT readiness for business continuity" 표준(안)에 기반을 제공하고 있다. 이러한 국제 표준화 동향을 토대로 본 논문에서는 사업연속성을 위한 국내 정보통신 인프라 대비체계에 포함될 주요 구성요소와 구축 요구사항을 제안하고자 한다.

• Journal of the Korea Society of Computer and Information
• /
• v.27 no.3
• /
• pp.165-171
• /
• 2022

In this paper, we suggest the Measures to improve the Act Bill for establishing the Game User Committee. The Act Bill has a lot of problems which are violations of criminal legalism due to unclear terms in administrative punishment and violations of The Human Right enjoying freedom of occupation and guaranting property due to not defining provisisons about The Duty of Confidentiality or The Legal Fiction as Public Officials for Purposes of Applying Penalty Provisions. also the duplicate regulations in the Act Bill disrupt game industry development. we have three results that were derived through analysis of Prior studies and precedents. The First is to define details of special reasons in enforcement ordinance and enforcement regulations. The Second is to define The Duty of Confidentiality or The Legal Fiction as Public Officials for Purposes of Applying Penalty Provisions in the act bill. The Third is to address managing the random reward items in the Game Rating and Administration Committee or is to give game user advance notice about the Comntent Dispute Mediation system.