• Journal of Information Processing Systems
• /
• v.13 no.6
• /
• pp.1516-1526
• /
• 2017

Many organizations today use patch management systems to uniformly manage software vulnerabilities. However, the patch management system does not guarantee the integrity of the patch in the process of providing the patch to the client. In this paper, we propose a method to guarantee patch integrity through dual electronic signatures. The dual electronic signatures are performed by the primary distribution server with the first digital signature and the secondary distribution server with the second digital signature. The dual electronic signature ensures ensure that there is no forgery or falsification in the patch transmission process, so that the client can verify that the patch provided is a normal patch. The dual electronic signatures can enhance the security of the patch management system, providing a secure environment for clients.

• International Journal of Computer Science & Network Security
• /
• v.24 no.7
• /
• pp.63-72
• /
• 2024

This is an extended paper, focusing on the cost management for the organizations dealing with the crucial issues of security systems. Information Technology (IT) is an important and irreplaceable need of society and all working sector's success depends on IT to a greater extent; therefore maintaining security features is one of the most important aspects of IT. When security in the IT sector is discussed, Patch Management (P.Mgnt) has to be taken under account. P. Mgnt includes many concerns and areas to be described for IT security such as methods and problems in updating patch, methods of reducing security risks with P.Mgnt, methods of achieving economies of scale by controlling the operational costs and taking decisions in investing as and when necessary. This paper presents a general definition of Patch management, its benefits and management of working cost through theoretical models, also the paper gives methods of feeding techniques for microstrip patch antenna MPA, showing the contracting and non contracting methods.

• Journal of Information Processing Systems
• /
• v.16 no.2
• /
• pp.301-317
• /
• 2020

An enterprise patch-management system (PMS) typically supplies a single point of failure (SPOF) of centralization structure. However, a Blockchain system offers features of decentralization, transaction integrity, user certification, and a smart chaincode. This study proposes a Hyperledger Fabric Blockchain-based distributed patch-management system and verifies its technological feasibility through prototyping, so that all participating users can be protected from various threats. In particular, by adopting a private chain for patch file set management, it is designed as a Blockchain system that can enhance security, log management, latest status supervision and monitoring functions. In addition, it uses a Hyperledger Fabric that owns a practical Byzantine fault tolerant consensus algorithm, and implements the functions of upload patch file set, download patch file set, and audit patch file history, which are major features of PMS, as a smart contract (chaincode), and verified this operation. The distributed ledger structure of Blockchain-based PMS can be a solution for distributor and client authentication and forgery problems, SPOF problem, and distribution record reliability problem. It not only presents an alternative to dealing with central management server loads and failures, but it also provides a higher level of security and availability.

• Journal of the Korea Society of Computer and Information
• /
• v.27 no.12
• /
• pp.179-188
• /
• 2022

In this paper, we propose an efficient and procedural software patch management phases. Every year, organizations have tens of thousands of known vulnerabilities and spend tens of thousands of hours and millions of dollars or more patching them. Despite these efforts, research has shown that the time it takes for an exploit to appear for a given patched vulnerability is shortening. As various types of organizations such as companies and universities manage patches in inconsistent ways, problems such as security problems, system instability, information leakage and work delay due to patches occur. In this paper, we look at the basics required for software patch management and define the factors to be considered for patch management and the effective steps for patch management. Therefore, this study will be used as a method to efficiently and procedurally execute the organization's patch management policy in the process of updating and patching the software in the organization to a new version as a solution to software function modification and security vulnerability.

• Korean Journal of Agricultural Science
• /
• v.38 no.2
• /
• pp.243-248
• /
• 2011

This investigation was conducted to develop an integrated disease management system against large patch disease occurred in a golf course. Large patch, brown patch, and Rhizoctonia blight sometimes are used interchangeably by turfgrass managers and researchers, Large patch disease of zoysiagrass is caused by a soilborne fungus called Rhizoctonia solani. Although this fungus is very similar to the one that causes brown patch disease of cool-season turfgrasses in mid-summer. Large patch development is favored by high thatch and soil moisture. Avoid overwatering the turfgrass, especially in the fall or early spring. Poorly-drained areas are very susceptible to injury from large patch and should be reconstructed (draining tiles, etc) to avoid soil saturation. However, control of yellow patch with fungicides is normally not recommended because the disease has only cosmetic effects and symptoms are usually very short-lived. Therefore, we reviewed the symptom of large patch to look for control method by soil management method.

• ETRI Journal
• /
• v.31 no.5
• /
• pp.554-564
• /
• 2009

In information security and network management, attacks based on vulnerabilities have grown in importance. Malicious attackers break into hosts using a variety of techniques. The most common method is to exploit known vulnerabilities. Although patches have long been available for vulnerabilities, system administrators have generally been reluctant to patch their hosts immediately because they perceive the patches to be annoying and complex. To solve these problems, we propose a security vulnerability evaluation and patch framework called PKG-VUL, which evaluates the software installed on hosts to decide whether the hosts are vulnerable and then applies patches to vulnerable hosts. All these operations are accomplished by the widely used simple network management protocol (SNMP). Therefore, system administrators can easily manage their vulnerable hosts through PKG-VUL included in the SNMP-based network management systems as a module. The evaluation results demonstrate the applicability of PKG-VUL and its performance in terms of devised criteria.

• Convergence Security Journal
• /
• v.4 no.2
• /
• pp.43-51
• /
• 2004

Operating systems and application programs have security vulnerabilities derived from the software development process. Recently, incident cases related with the abuses of these vulnerabilities are increasing and the damages caused by them are becoming very important security issues all over the nations. Patch management is one of the most important processes to fix vulnerabilities of softwares and to ensure a security of systems. Since an institute or a company has distributed hierarchical and heterogeneous systems, it is not easy to update patches promptly. In this paper, we propose patch management framework to safely distribute and install the patches on Windows, Linux, and Solaris client systems. Besides, we considered extensibility and hierarchical structure for our patch management framework to support large scaled network environment.

• The Journal of Information Systems
• /
• v.14 no.3
• /
• pp.23-30
• /
• 2005

Computer attacks on vulnerable software are ubiquitous. Today's attacks on client PCs can be used to create armies of zombie computers that are capable of wide reach attacks on high profile businesses and governments. The simple act of patching software vulnerabilities will certainly mitigate this problem, but patching has its own set of problems. Further, it is frequently the case that patches which are available to mitigate vulnerabilities are not being made on a timely basis and sometimes are not being made at all. One solution to the patch management dilemma is outsourcing. This paper notes that outsourcing is not a carte blanche decision that can be made based on dollars, but rather that a contingency decision matrix can provide guidance on outsourcing solutions for patch management and other security components as well. The matrix recognizes that IS staff expertise and employee security awareness are two important factors in the outsourcing decision.

• Journal of the Korean Institute of Landscape Architecture
• /
• v.31 no.3
• /
• pp.107-113
• /
• 2003

Ecological control can contribute to the sustainibility of vegetation management systems by reducing the input currently derived from non-renewable fossil energy sources. The use of turfgrass mixtures is an important tool in turf management. Turfgrass mixtures of two or more compatible and adapted species provide improved tolerance to pest and environmental stress, more so than monostands. The objectives of this study were to evaluated turf insects, pests and zoysia large patch control by turgrass mixtures. In April 2001 and 2002, plots were inoculated with 50g of Rhizoctonia solani AG2-2LP inoculum. Inoculum were treated within a 29cm diamater circle at Zoysia japonica, Zoysia japonica, Poa pratenis, or Festuca arundinacea mixtures. After four weeks, disease severity in each plot was determined. plot area visual ratings were assessed visually on a linera 0 to 100%. In August 2001 and October 2002, turf insects and pests in each plot were investigated in 10cm deep soil cores with 8cm diameters using hole cut. Zoysia large patch affected zoysiagrass monostands more severly than zoysiagrass and cool-season turfgrasses mixtures. It was suggested that the barrier effect of cool-season turfgrass suppressed zoysia large patch in the mixture of zoysiagrass and cool-season turfgrasses. Also, warm-season and cool-season turfgrasses mixtures suppressed insect populations more efficiently than warm-season turfgrass monostands.

• The Korean Journal of Pain
• /
• v.31 no.2
• /
• pp.80-86
• /
• 2018

The Epidural blood patch is considered the gold standard for managing postdural puncture headache when supportive measures fail. However, it is a procedure which can lead to another inadvertent dural puncture. Other potential adverse events that could occur during a blood patch are meningitis, neurological deficits, and unconsciousness. The bilateral greater occipital nerve block has been used for treating chronic headaches in patients with PDPH with a single injection. This minimally invasive, simple procedure can be considered for patients early, along with other supportive treatment, and an epidural blood patch can be avoided.