• Management & Information Systems Review
• /
• v.3
• /
• pp.1-14
• /
• 1999

Recently, information resource management(IRM) has a considerable interest among researchers and practitioners because the information resource have been found critical influence on organizational performance. The IRM construct has been defined a comprehensive approach to planning, organizing, controlling the resources, and activities associated with acquiring and distributing data to meet a business need. This study have several objectives: 1) to operationalize the measurement instrument of IRM, 2) to identify the factors influencing organizational performance, and 3) to suggest the research model between IRM and organizational performance and then 4) to provide reference for managers to assess the IRM implementation in their organization. By reviewing the literature, past experience, others' use, encouragement by others, and anxiety are selected as the factors influencing IRM. The IRM construct has been classified with eight dimensions : chief information officer, planning, security, technology integration, advisory committees, enterprise model, information integration, and data administration. Eight hypotheses concerning the relationship between each of the IRM and organizational performance are suggested in this study.

• Advanced Industrial SCIence
• /
• v.2 no.2
• /
• pp.25-30
• /
• 2023

The purpose of this study is to empirically analyze the impact of corporate innovation activities on corporate innovation performance using data from companies participating in the smart farm project. A company's innovation activities were divided into planning capacity, R&D capacity, and commercialization capacity, and the impact of each innovation activity on the company's sales and patent creation was estimated. The moderating effect was also analyzed. Regression analysis was conducted as a research method, and as a result of the analysis, it was found that planning capacity, R&D capacity, and commercialization capacity related to innovation within a company have an impact on corporate performance creation. appeared to be In order to increase the business performance of technology commercialization, it was confirmed that planning and R&D capabilities as well as governmental technology policy support are needed.

• International Journal of Computer Science & Network Security
• /
• v.24 no.6
• /
• pp.119-130
• /
• 2024

Universities are open systems that aim to prepare students to meet academic and industrial programs' expectations. It is important for universities to recognize these expectations and to make sure that they are achievable. To do so, graduates' progression tracking system is an essential tool for universities' development to ensure graduate students meet the market requirements. The purpose of this paper is to create automatic tracing system that captures information about students after graduation and creates annual report that represents the status of university students in term of employment or completing their study. It mainly assists graduates to find appropriate jobs that meet their desires or enabling them to complete their higher education by providing all these opportunities in one platform. The system main objective is to improve communication between graduate students, the university and companies. It also aims to identify the difficulties associated with graduate employability and changes are required to serve current students in term of creating new programs or activities. This helps universities to identify and address the existing curriculums and program's strengths and weaknesses and their adequacy, quality and competencies of a graduate in the labor market, which enhances the quality of higher education. we analyzed and implemented the tracing system using PHP language, which speeds up custom web application development and MySQL database, which guarantee data security, high performance, and other features. Graduate students found the proposed system usable and valuable.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.24 no.6
• /
• pp.1185-1195
• /
• 2014

Domestic and international CERTs are carrying out security monitoring and response services based on security devices for intrusion incident prevention and damage minimization of the organizations. However, the security monitoring and response service has a fatal limitation in that it is unable to detect unknown attacks that are not matched to the predefined signatures. In recent, many approaches have adopted the darknet technique in order to overcome the limitation. Since the darknet means a set of unused IP addresses, no real systems connected to the darknet. Thus, all the incoming traffic to the darknet can be regarded as attack activities. In this paper, we present a collection and analysis method of malicious URLs based on darkent traffic for advanced security monitoring and response service. The proposed method prepared 8,192 darknet space and extracted all of URLs from the darknet traffic, and carried out in-depth analysis for the extracted URLs. The analysis results can contribute to the emergence response of large-scale cyber threats and it is able to improve the performance of the security monitoring and response if we apply the malicious URLs into the security devices, DNS sinkhole service, etc.

• Electronics and Telecommunications Trends
• /
• v.39 no.3
• /
• pp.48-57
• /
• 2024

Cyberthreats and crimes have become common in society and demand the adoption of robust security measures. Financial cybercrimes, personal information breaches, and spam messages are now prevalent, while companies and nations face an increasing number of cyberthreats and attacks such as distributed denial of service, ransomware, and malware. As the overall socioeconomic landscape undergoes digitalization powered by big data, cloud computing, and artificial intelligence technologies, the importance of cybersecurity is expected to steadily increase. Developed nations are actively implementing various policies to strengthen cybersecurity and providing government support for research and development activities to bolster their domestic cybersecurity industries. In particular, the South Korean government has designated cybersecurity as one of the 12 nationwide strategic technology sectors. We examine the current landscape of cybersecurity companies and the information and communication technology supply chain, providing insights into the domestic cybersecurity market and suggesting implications for South Korea.

• Informatization Policy
• /
• v.30 no.4
• /
• pp.3-39
• /
• 2023

With the growing importance of information/information system, information security is emphasized, and the significance of information security audit as a tool for maintaining the proper security level is increasing as well. The objectives of the study are to identify the overall research trends and to propose future research areas by analyzing domestic and overseas research in the area. To achieve the objectives, 103 research papers were analyzed based on both general and subject-related criteria. The following are the major research results : In terms of research approach, more empirical studies are needed; For subject "Auditor," studies to develop a framework for related variables (e.g., capability) are needed; For subject "Audit Activities/Procedures," future research should focus on the process/results of detailed audit activities; Future domestic research for "Audit Areas" should look for the new technology/industry/security areas covered by foreign studies; For "Audit Objective/Impact," studies to define the variables (e.g., performance and quality) systematically and comprehensively are needed; For "Audit Standard/Guidelines," research on model/guideline needs to be continued.

• Journal of the Korea Society of Computer and Information
• /
• v.15 no.10
• /
• pp.201-207
• /
• 2010

This paper covers a series of activities including initial proposal and actual development for the performance improvement of large-scale public facility management system under the application of green IT concept, which finally produced various excellent results in the administration of expense control, human resources, and general affairs. Actual development procedure starts from the analysis required by system users with the purpose of finding cost reduction opportunities under the application of green IT concept, which is followed by a series of activities including making a proposal for performance improvement, the development of trial system and the actual application into real system. As an example of large-scale public facility management system, national qualification management system was taken in order to convert the existing individual test storage unit into on-line storage space equipped with reinforced security function, resulting in acquisition of efficient productivity and greater savings in human resources as well as general expenses. A comparison with existing system and newly developed system was made in the area of number of operators, abnormal processing, system maintenances. It proved that efficiency increased to the minimum of 2 times and to the maximum 12 times with the 5 million savings of personal storage unit.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.23 no.6
• /
• pp.1259-1266
• /
• 2013

Nowadays, the databases are getting larger and larger. As the company has difficulty in managing the database, they want to outsource the database to the cloud system. In this case the database security is more important because their database is managed by the cloud service provider. Among database security techniques, the encryption method is a well-certified and established technology for protecting sensitive data. However, once encrypted, the data can no longer be easily queried. The performance of the database depends on how to encrypt the sensitive data, and on the approach for searching, and the retrieval efficiency that is implemented. In this paper we propose the new suitable mechanism to encrypt the database and lookup process on the encrypted database under control of the cloud service provider. This database encryption algorithm uses the bloom filter with the variable keyword based index. Finally, we demonstrate that the proposed algorithm should be useful for database encryption related research and application activities.

• STI Policy Review
• /
• v.3 no.1
• /
• pp.117-138
• /
• 2012

Governments around the world place great hopes in innovation in their search for new sources of growth and for responses to grand challenges, such as climate change, new or re-emerging infectious diseases, accelerating urbanisation, ageing, food security, and availability of clean water. However they must devise their relevant support policies -- including through sponsored research within public research institutes -- taking into account that innovation processes are currently undergoing a major transformation. New innovation patterns include a broadening scope of relevant activities, a growing importance but changing nature of scientific roots of technological development, a stronger demand-pull, the emergence of new local and national STI powerhouses, and the rise of more open and globalised innovation networks. They translate into new opportunities but also constraints for policies to enhance the contribution of public research institutes to national innovation performance. The article derives the main policy implications regarding the desirable evolution of the mission, research focus, as well as the funding and steering of public research institutes, with a special reference to Korea.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.25 no.5
• /
• pp.1043-1057
• /
• 2015

In order to recognize intelligent threats quickly and detect and respond to them actively, major public bodies and private institutions operate and administer an Intrusion Detection Systems (IDS), which plays a very important role in finding and detecting attacks. However, most IDS alerts have a problem that they generate false positives. In addition, in order to detect unknown malicious codes and recognize and respond to their threats in advance, APT response solutions or actions based systems are introduced and operated. These execute malicious codes directly using virtual technology and detect abnormal activities in virtual environments or unknown attacks with other methods. However, these, too, have weaknesses such as the avoidance of the virtual environments, the problem of performance about total inspection of traffic and errors in policy. Accordingly, for the effective detection of intrusion, it is very important to enhance security monitoring, consequentially. This study discusses a plan for the reduction of false positives as a plan for the enhancement of security monitoring. As a result of an experiment based on the empirical data of G, rules were drawn in three types and 11 kinds. As a result of a test following these rules, it was verified that the overall detection rate decreased by 30% to 50%, and the performance was improved by over 30%.