• Title/Summary/Keyword: Personal Information protection

Search Result 784, Processing Time 0.032 seconds

Authentication Scheme based on NTRU for the Protection of Payment Information in NFC Mobile Environment (NFC 모바일 환경에서 결제정보보호를 위한 NTRU 기반 인증 기법)

  • Park, Sung Wook;Lee, Im Yeong
    • KIPS Transactions on Computer and Communication Systems
    • /
    • v.2 no.3
    • /
    • pp.133-142
    • /
    • 2013
  • Recently, smart devices for various services have been developed using converged telecommunications, and the markets for near field communication (NFC) mobile services is expected to grow rapidly. In particular, the realization of mobile NFC payment services is expected to go commercial, and it is widely attracting attention both on a domestic and global level. However, this realization would increase privacy infringement, as personal information is extensively used in the NFC technology. One example of such privacy infringement would be the case of the Google wallet service. In this paper, we propose an mutual authentication scheme based on NTRU for secure channel in OTA and an zero-knowledge proof scheme NTRU based on for protecting user information in NFC mobile payment systems without directly using private financial information of the user.

Vulnerability analysis for AppLock Application (AppLock 정보 은닉 앱에 대한 취약점 분석)

  • Hong, Pyo-gil;Kim, Dohyun
    • Journal of the Korea Institute of Information Security & Cryptology
    • /
    • v.32 no.5
    • /
    • pp.845-853
    • /
    • 2022
  • As the memory capacity of smartphone increases, the type and amount of privacy stored in the smartphone is also increasing. but recently there is an increasing possibility that various personal information such as photos and videos of smartphones may be leaked due to malicious apps by malicious attackers or other people such as repair technicians. This paper analyzed and studied the security and vulnerability of these vault apps by analyzing the cryptography algorithm and data protection function. We analyzed 5.3.7(June 13, 2022) and 3.3.2(December 30, 2020) versions of AppLock, the most downloaded information-hidding apps registered with Google Play, and found various vulnerabilities. In the case of access control, there was a vulnerability in that values for encrypting patterns entered by users were hardcoded into plain text in the source code, and encrypted pattern values were stored in xml files. In addition, in the case of the vault function, there was a vulnerability in that the files and log files for storing in the vault were not encrypted.

The Associated Factors of Protective Behaviors for Radiation Exposure based on Health Belief Model Honam Province Radiologic Technologists (건강신념모델을 적용한 호남지역 방사선사의 방사선 방어행위 수행도 관련 요인)

  • Yoon, Yo-Sang;Ryu, So-Yeon;Park, Jong;Choi, Seong-Woo;Oh, Hye-Jong
    • Journal of the Korea Academia-Industrial cooperation Society
    • /
    • v.21 no.3
    • /
    • pp.96-107
    • /
    • 2020
  • This study aimed to identify the associated factors of protective behaviors for radiation exposure among some radiology technologists using the Health Belief Model. The subjects of the study were 541 radiology technologists working at hospitals or clinics in Honam Province. Using the SPSS version 18.0 program, data were analyzed using a t-test, ANOVA, Pearson's correlation analysis, and hierarchical multiple logistic regression analysis. To modify the factors, the performance of subjects who had a higher level of education and nuclear medicine rooms were higher than those who worked in simple radiography rooms. The radiation protective behaviors performance of the subjects who had more exercise, medium-level stress, and worked in higher-quality protection facilities was higher. Regarding the personal perceptions, the cues to action (β=.292, p=.0001), and perceived seriousness (β =.075, p=.010) were factors that had effects on the performance of radiation protection behaviors. Regarding the likelihood of action, the benefits (β=.168, p<.0001), self-efficacy (β=.148, p=.007), and the performance of protective behaviors were higher. In conclusion, protection education as a cue to action should be provided to stimulate protective behaviors, and the benefits of protective behaviors should be emphasized. To increase the performance of protection behaviors, self-efficacy should be enhanced, and the subjects are offered appropriate information that helps perceive seriousness.

Privacy Protection for 5G Mobile-based IoT Users (5G 이동 통신 기반의 IoT 사용자를 위한 프라이버시 보호 기법)

  • Jeong, Yoon-Su;Yoon, Deok-Byeong;Shin, Seung-Soo
    • Journal of the Korea Convergence Society
    • /
    • v.11 no.1
    • /
    • pp.1-7
    • /
    • 2020
  • Recently 5G technology is one of the technologies that has been receiving much positive responses from users as it is integrated with virtual technology. However, 5G's security issues have not been fully resolved and more security is soon required. In this paper, an approach technique is proposed as a probability-based hierarchy to provide personal privacy for 5G-based IoT users more safely. The proposed technique is aimed at not exposing the privacy of IoT users to third parties by using two random keys created personally by IoT users. In order to satisfy both safety and efficiency, the proposed technology divides the privacy of IoT users into two layers. In the first stage, IoT users will control access to intermediate media using anonymous keys generated by IoT users, and in the second stage, information of IoT users registered with servers will be darkened and replicated. The proposed technique has improved the accuracy of the privacy protection of IoT users as they assign weights to layered information after layering users' privacy information on a probabilistic basis.

A Study on the Factors Affecting the User Resistance in Social Network Service (Social Network Service에서의 사용자 저항에 영향을 미치는 요인에 관한 연구)

  • Park, Eunkyung;Choi, Jeongil;Yeon, Jiyoung
    • Journal of Korean Society for Quality Management
    • /
    • v.42 no.3
    • /
    • pp.387-406
    • /
    • 2014
  • Purpose: The widespread use of social network services (SNS) has caused users concern about the disclosure of their privacy or personal information. The purpose of this study is to analyze the factors of privacy concern and self presentation that affect the user resistance in the use of social network service. Methods: This study verifies the factors that affecting the user resistance in SNS. The research model suggested in this study is tested via a survey of 260 SNS users. SPSS and Smart PLS had been used to test the suggested hypotheses. Results: This study shows that privacy experience, privacy awareness, self esteem, and social desirability significantly influence perceived risk and that privacy awareness, self esteem, self efficacy, and perceived risk significantly influence perceived trust. It also verifies that perceived risk and perceived trust positively affect user resistance. Conclusion: This paper suggests that high awareness on privacy of SNS user encourages the SNS companies to consider the privacy protection mechanism for eliminating various factors that affecting the risk. This study also shows that the privacy calculus model applies to understanding the mechanism on resistance of SNS user.

A Study on NTIS Revitalization Plan through the National Research Automated Registry System (국가연구자등록코드시스템을 통한 NTIS 활성화 방안 연구)

  • Lee, Sang-Hwa
    • Journal of Korea Technology Innovation Society
    • /
    • v.13 no.1
    • /
    • pp.28-43
    • /
    • 2010
  • Recently, the establishment of Project Management System for National Research and Development Projects focusing on researchers has drawn sharp attention through revision of applicable laws and regulations, and presentation of national policy tasks for the management of national R&D projects, however, it is insufficient to say that a remarkable system has been established by researchers. In this study, a National Research Automated Registry Code Numbering System was suggested by using a National R&D Projects Human Resource Declaration System for Project Management System for National R&D Projects focusing on researchers. In addition, a National Research Automated Registry Code System was sought in order to realize this system. Through this suggestion, consolidation of personal information protection can be attainted through the national career management, and by raising the participation of researchers naturally, reduction in administrative affairs, simplification of accomplishments verification, and improvement in investigation, analysis and evaluation statistic quality can be expected.

  • PDF

Type and Settlement System of Disputes in Electronic Commerce (전자상거래 분쟁의 유형과 해결제도)

  • 이강빈
    • Journal of Arbitration Studies
    • /
    • v.11 no.1
    • /
    • pp.217-245
    • /
    • 2001
  • Like traditional commerce, disputes are bound to arise in the course of conducting an e-commerce transaction. At present of June 30, 2001, 259 cases of dispute on e-commerce have been applied for the mediation of Electronic Transaction Dispute Mediation Committee, types of them are 170 cases of delayed delivery of commodity, 21 cases of contract cancellation and refund, 16 cases of personal information protection, 16 cases of false and exaggerated advertisement, 14 cases of commodity defect. The settlement systems of e-commerce dispute are litigation and Alternative Dispute Resolution(ADR). ADR encompasses mediation, arbitration, and similar private tools for resolving disputes. ADR offers many perceived advantages. Speed of resolution and low cost are often cited as the primary benefits. Therfore e-commerce disputes may be settled more effectively by litigation. The settlement systems of e-commerce dispute by ADR are the mediation of Electronic Transaction Dispute Mediation Committee, the mediation of Consumer Dispute Mediation Commercial Arbitration Board, and the arbitration of Korean Commerical Arbitration Board. E-commerce sets up the probability that its merchants and customers will not exist in the same legal jurisdictions. The confusing application of laws and wide geographical dispersion of these parties will necessitate a faster and cheaper dispute resolution methodology. Therefore, online ADR may be effective for e-commerce dispute resolution. The examples of online ADR opetation are the cyber mediation of Electronic Transaction Dispute Resolution Committee, the cyber mediation of Korean Commercial Arbitration Board, the cyber mediation of Click N Settle, the online ADR of BBB online, and the cyber arbitration of virtual Magistrate.

  • PDF

A Conceptual Study on the Development of Intelligent Detection Model for the anonymous Communication bypassing the Cyber Defense System (사이버 방어체계를 우회하는 익명통신의 지능형 탐지모델개발을 위한 개념연구)

  • Jung, Ui Seob;Kim, Jae Hyun;Jeong, Chan Ki
    • Convergence Security Journal
    • /
    • v.19 no.4
    • /
    • pp.77-85
    • /
    • 2019
  • As the Internet continues to evolve, cyber attacks are becoming more precise and covert. Anonymous communication, which is used to protect personal privacy, is also being used for cyber attacks. Not only it hides the attacker's IP address but also encrypts traffic, which allows users to bypass the information protection system that most organizations and institutions are using to defend cyber attacks. For this reason, anonymous communication can be used as a means of attacking malicious code or for downloading additional malware. Therefore, this study aims to suggest a method to detect and block encrypted anonymous communication as quickly as possible through artificial intelligence. Furthermore, it will be applied to the defense to detect malicious communication and contribute to preventing the leakage of important data and cyber attacks.

Development and Evaluation of a Joint Health Self-management Program for the Elderly with Knee Osteoarthritis in Communities: Applying the IMB Model (재가 무릎 골관절염 환자의 관절건강 자가관리 프로그램 개발 및 효과: IMB 모델 적용)

  • Kim, Young-il;Park, Jeong Sook
    • Research in Community and Public Health Nursing
    • /
    • v.28 no.1
    • /
    • pp.55-68
    • /
    • 2017
  • Purpose: The purpose of this study is to develop and evaluate a joint health self-management program for knee osteoarthritis elders in communities. Methods: This program was developed based on the IMB (information-motivationbehavioral skills) model. The program methods include education, setting and achieving goals, sharing experiences, telephone counseling, and self-monitoring. The topics of the program include joint assessment, exercise, massage, joint protection, medication, depression management, diet, and healthcare approach. The research was conducted following the principles of the nonequivalent control group pretest-posttest design. Participants were 26 subjects in the experimental group, and 27 subjects in the control group. The experimental group participated in the self-management program, and the control group received general education. Results: Both post-test scores of personal motivation, social motivation, behavior skill, self-management behavior, joint pain, joint stiffness, physical function disability, right knee extension, left knee extension, and depression were significantly different between the experimental group and the control group. Conclusion: The results of the study can be used to develop and standardize a systematic joint health self-management program. Further research is highly recommended to develop a strategy to continuously facilitate self-management of osteoarthritis patients' procedures.

Compliance with Nosocomial Infection Control and Related Factors among Emergency Room Nurses (응급실 간호사의 감염관리 수행도 및 관련 요인)

  • Park, Sang-Yeon;Shin, Dong-Soo;Lee, Hyun-Gu;Kim, Hee-Sook
    • Journal of Korean Academy of Fundamentals of Nursing
    • /
    • v.15 no.2
    • /
    • pp.153-160
    • /
    • 2008
  • Purpose: This study was done to examine the level of compliance and the relation of related factors of nosocomial infection control among nurses in emergency rooms. The data will provide fundamental information for developing programs for nosocomial infection control in the emergency room. Method: Study participants were 183 nurses working in emergency rooms in general hospitals that had more than 500 beds and were located in Daegu, Daejeun, and Pusan. The survey was carried out from March 7 to March 26, 2006 and a structured questionnaire was used. Descriptive statistics, t-test, ANOVA and Sheffe test with SPSS 14.0 were used to analyze the data. Results: The average level for practice of infection control was relatively low Levels of compliance were high when the participants had: 1) regular conferences for nosocomial infection control, 2) positive perception of protection devices, 3) knowledge of whom to report and experiences of reporting needle stick injuries, 4) hospital guidelines for infection control and 5) enough equipment supplies from the hospital. Conclusion: Nosocomial infection control among emergency room nurses could be improved via personal, psychosocial, and organizational factors and related education.

  • PDF