• The Korean Journal of Archival Studies
• /
• no.18
• /
• pp.281-315
• /
• 2008

This paper reviews recent records issues surrounding former president Roh Moo-Hyun's private possession of the copies of the presidential records in Korea. While the former president transferred his records to the National Archives of Korea, he copied his electronic presidential records and kept them in his house after the term. His retention of the "records copies" arouse critical records issues and criminal charges. In this paper, I examined the definition of presidential records and legal status of records copies, authenticity of electronic copies of public records in public and private records systems, nature and scope of presidential privilege of access to his records, and most importantly, political neutrality of national archives. I examined these issues comparing with foreign experience, especially that of the United States which has the Presidential Records Act like Korea. All issues are examined in the professional spirit of archives principles and archives ethics. Legal status of the electronic copies of presidential records is not firmly established and the criminal charge seems groundless. However, it is against public archives principles and ethics that private former president privately possesses and manages private information and national security information held in the electronic copies of the presidential records. Presidential Records Act of Korea provides an effective tool to protect the presidential records for 15 years and it should be respected. It is time to consolidate the public records management institutions in Korea, not to disintegrate them.

• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.20 no.6
• /
• pp.1-8
• /
• 2019

Medical information is an important personal information for patients, and it must be protected. In particular, when medical personnel approach electronic medical records, authentication for enhanced security is essential. However, the existing public certificate-based certification model did not reflect the security characteristics of the electronic medical record(EMR) due to problems such as personal key management and authority delegation. In this study, we propose a fingerprint recognition-based authentication model with enhanced security to solve problems in the approach of the existing electronic medical record system. The proposed authentication model is an EMR system based on fingerprint recognition using PEMS (Private-key Escrow Management Server), which is applied with the private key commission protocol and the private key withdrawal protocol, enabling the problem of personal key management and authority delegation to be resolved at source. The performance experiment of the proposed certification model confirmed that the performance time was improved compared to the existing public certificate-based authentication, and the user's convenience was increased by recognizing fingerprints by replacing the electronic signature password.

• The Korean Journal of Archival Studies
• /
• no.65
• /
• pp.89-108
• /
• 2020

Twenty years after the Records Managemen Act was first enacted, the archiving environment has changed a lot. The advent of the electronic records environment, the importance of presidential records management, and the importance of managing private records have been a direct background to the 2006 revision of the Records Management Act. The field of electronic records management and the field of presidential records management have challenges and limitations, but have been steadily developing. However, in the private sector, archiving has not changed significantly compared to the voluntary activity. Now the maeul-community is calling for a response from the records management community. A society develops when the private and public sectors cooperate with each other and form healthy check-ups. In the archiving field, it must also become active through cooperation.

• The KIPS Transactions:PartC
• /
• v.18C no.6
• /
• pp.379-388
• /
• 2011

Ensuring the security of medical records is becoming an increasingly important problem as modern technology is integrated into existing medical services. As a consequence of the adoption of EMR(Electronic Medical Records) in the health care sector, it is becoming more and more common for a health professional to edit and view a patient's record. In order to protect the patient's privacy, a secure authentication model to access the electronic medical records system must be used. A traditional identity based digital certificate for the authenticity of EMR has private key management and key escrow of a user's private key. In order to protect the EMR, The traditional authentication system is based on the digital certificate. The identity based digital certificate has many disadvantages, for example, the private key can be forgotten or stolen, and can be easily escrow of the private key. Nowadays, authentication model using fingerprint recognition technology for EMR has become more prevalent because of the advantages over digital certificate -based authentication model. Because identity-based fingerprint recognition can eliminate disadvantages of identity-based digital certificate, the proposed authentication model provide high security for access control in EMR.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.12 no.12
• /
• pp.6057-6078
• /
• 2018

Smart home systems provide a safe, comfortable, and convenient living environment for users, whereby users enjoy featured home services supported by the data collected and generated by smart devices in smart home systems. However, existing smart devices lack sufficient protection in terms of data security and privacy, and challenging security and privacy issues inevitably emerge when using these data. This article aims to address these challenging issues by proposing a private blockchain-based access control (PBAC) scheme. PBAC involves employing a private blockchain to provide an unforgeable and auditable foundation for smart home systems, that can thwart illegal data access, and ensure the accuracy, integrity, and timeliness of access records. A detailed security analysis shows that PBAC could preserve data security against various attacks. In addition, we conduct a comprehensive performance evaluation to demonstrate that PBAC is feasible and efficient.

• The Korean Journal of Archival Studies
• /
• no.47
• /
• pp.255-286
• /
• 2016

This study aims to propose a tool for a comparison of public electronic records management in a public institution and a private records management facility and to reveal the considerations prior to decisions on the way of management. For developing a tool, it chooses CoMMPER as a basic model and modifies it after reviewing existing cost models, because only CoMMPER can over public records management. Modified-CoMMPER is added a new cost area[Aquisition], and is modified and extended cost elements and generic cost factors for the comparison. Public institutions which consider whether commission the management of public electronic records can use Modified-CoMMPER for comparing economic impacts in terms of long-term preservation. To make a rational decision on the way of management based on the economic analysis, this study proposed 3 main task. Fist, the scope of the activities has to be defined, second, the cost-effectiveness has to be estimated base on the cost model, for example Modified-CoMMPER, third, policy-making for the management of public electronic records must be proceeded based on the various researches on the cost of records management.

• Journal of Society of Preventive Korean Medicine
• /
• v.18 no.3
• /
• pp.11-21
• /
• 2014

The rapid development and distribution of information communication industry facilitates the changes of hospital administration, introducing EMR(Electronic Medical Record) instead of paper-based medical record in the medical field. The developed countries such as U.S. have established EMR system after in the middle of 1970s because the primary advantages of EMR is to store and handle vast amounts of records efficiently and increase the quality of health care. Most of health organizations in Korea also apply medical record system to their administration. As the result, they have accomplished a scientific administration system through the use of medical record to handle a variety of patient's information including patient's confidentiality and privacy such as family history, social status, income level, and so on. However, access to and the misuse of EMR causes illegal infringement of patient's information and finally it becomes a very serious medical issue. Potential leakage and misuse of records may seriously infringe patient's privacy rights. In this respect, the related agencies in the public and private sector have been making efforts to prevent patient's records leakages. Especially, the revision bill of Medical Law in 2002 establishes the ways on the security and standards of electronic records. However, it does not provide the proper guidelines which is applied to the rapid changes of the medical environment. One of the most priorities in the hospital administration is the production and maintenance of an accurate medical records fulfilled by medical recorders. Therefore, it is very important for health care providers to hire ethical-based medical recorders. But, unfortunately most of hospitals overlook the importance of their roles. All parts including government, physician and patient must have more concerns on the problems related to EMR. Therefore, this study aims to propose the proper ways to resolve the problems coming from EMR.

• Proceedings of Korean Society of Archives and Records Management
• /
• 2019.05a
• /
• pp.69-74
• /
• 2019

In the digital environment, electronic records are explosively increasing, but there are little concerns on how to effectively manage and service. On-Nara 2.0 and record management system, the information system of records production and management stage, are being developed and distributed on the cloud base. Archives management system requires the acquisition of new record management techniques because they need to acquire and manage various types of private records as well as public records. In this paper, we will discuss automation and intelligent technologies for archives management.

• The Korean Journal of Archival Studies
• /
• no.30
• /
• pp.175-204
• /
• 2011

Electronic records are generated not only in public sector but also in private sector. Records will be used across the public-private boundary. The Certified e-Document Authorities(CeDAs) may keep electronic documents in private sector for preservation and evidence, like the official Record Management Systems for Public sector. A CeDA is the Trusted Third Party (TTP) as a business to be entrusted and proof interchanging documents between parties. This CeDA system could be sustainable only if the CeDA earn the enough sales through enough uses. And yet, all the eight CeDA companies have not had enough users. How to utilize CeDAs is one of the hot issues in this area. In this paper, We analyze the threat to trustworthiness of CeDA due to payment of only one party among others, and describe the difficulty in use of CeDA for an individual user. These things make CeDAs cannot have enough users. To do address these, We expand the boundary of relevant parties for a document, present a delegate-establishing option under a joint name, show the needs of identifying and notifying minimum relevant parties, and suggest the proxy parties to help the individual users.

• The Korean Journal of Archival Studies
• /
• no.10
• /
• pp.3-26
• /
• 2004

ISO 15489:2001 addresses the principles and requirements with which organizations, both public and private, should comply on the management of their records to ensure that adequate records are created, captured and managed. The standard defines the characteristics that a record should have through records management system as follows: authenticity, reliability, integrity, and usability. Authenticity means that records can be proven to be what it purports to be, to have been created or sent by the person purported to have created or sent it, and to have been created or sent at the time purported. Reliability means that the contents of the records can be trusted as a full and accurate representation of the transactions, activities or facts to which they attest and can be depended upon in the course of subsequent transactions or activities. Integrity refers to ensuring that a record is complete and unaltered. Usability means that records can be located, retrieved, presented and interpreted. In order to have these characteristics, a record should be persistently linked to the metadata necessary to document a transaction. Metadata is "data describing context, content and structure of records and their management through time." Metadata ensure the creation and maintenance of authentic, reliable and usable records and the protection of the integrity of those records. It could be implemented by creating and capturing records management metadata in systems that create and manage records. There have been some projects and standard initiatives to identify a core set of records management metadata. Included are the Australian Recordkeeping Metadata Standard and the British Metadata Standard which is part of the Requirements for Electronic Records Management System. Recently ISO/TS 23081-1 is published to implement metadata requirements within the framework of ISO 15489. Public records management system in Korea is ruled by the Act on the Management of Archives by Public Agencies and Administrative Records Management Regulation. This article evaluates records and their descriptive elements captured and maintained by the records management system in Korea on the basis of the international metadata standards.