• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.15 no.5
• /
• pp.3121-3131
• /
• 2014

Vulnerabilities related to memory have been known as major threats to the security of a computer system. Actually, the number of attacks using memory vulnerability has been increased. Accordingly, various memory protection mechanisms have been studied and implemented on operating system while new attack techniques bypassing the protection systems have been developed. Especially, buffer overflow attacks have been developed as Return-Oriented Programing(ROP) and Jump-Oriented Programming(JOP) called Code Re-used attack to bypass the memory protection mechanism. Thus, in this paper, I analyzed code re-use attack techniques emerged recently among attacks related to memory, as well as analyzed various detection mechanisms proposed previously. Based on the results of the analyses, a mechanism that could detect various code re-use attacks on a binary level was proposed. In addition, it was verified through experiments that the proposed mechanism could detect code re-use attacks effectively.

• Journal of KIISE:Computing Practices and Letters
• /
• v.5 no.6
• /
• pp.758-770
• /
• 1999

최근 급속한 네트워크 기술의 발달로 이들에 대한 관리의 필요성이 제기되었고 이를 위해 SNMP와 CMIP등과 같은 표준이 등장하여 사용되어 왔다. 그러나 점점 더 다양하고 복잡한 네트워크가 형성되자 이들에 대한 효율적인 관리가 필요하게 되었다. 현재, TMN은 개념에 있어서 보편성 및 가장 일반화된 관리개념이며 최종적으로 도달할 네트워크 관리 개념을 포함하고 있다. CORBA는 분산환경에서 응용프로그램을 쉽게 구현할 수 있는 기반을 제공하고 있다. 따라서 이러한 두 가지 기술을 접목한 CORBA와 TMN을 통합하고자 하는 많은 연구가 진행되고 있다. 본 논문에서는 현재의 CORBA/TMN 통합에 대한 연구를 바탕으로 효율적인 네트워크 통합 관리 구조를 정의하고 TMN의 기능중 Alarm Surveillance를 구조에 맞춰 구현하였다. 구현된 Alarm Surveillance System은 다양한 대리자들로부터 보고되는 여러 형태의 Alarm 정보에 대해, 처리 및 운용자에 대한 보고수행 등을 일관성 있게 처리하고 있는 것을 보여주고 있다. 따라서 제시된 Alarm Surveillance System은 사용자에게 일관성 있는 관리행위를 제공함으로써 다양한 관리구조가 적용된 복잡한 네트워크 관리를 제공할 수 있다. 또한 전체 네트워크로부터 필요한 통계분석을 위한 자료 수집 등의 편의를 제공할 것이다.Abstract Recently, due to the rapid development of network technology, the need for the network management appeared. So two representative standardards, SNMP and CMIP, have been applied to many network management system. But the more complex and vaious network are constructed, the demand for more efficient network management technology grew bigger. Currently, TMN technology is beginning to be widely applied to the management of networks. CORBA has been widely adopted for developing distributed systems in many areas of information technology. CORBA provides the infrastructure for the interoperability of various object-oriented management applications in a distributed environment, and, recently there have been world-wide research for the integration of CORBA within a TMN framework. Many attempts have been made to enable network management using CORBA techonology and some are working on already. This paper defines the architecture for integrated network management based on current CORBA/TMN integration technologies and then presents the design and implementation for alarm surveillance system which was applied to the defined architecture. The prototype implementation was done using IONA orbix. The proposed integrated network management framework will provide users with consistent management operations and ability to manage complex and various networks and to gather statistical data from those networks.

• Journal of Intelligence and Information Systems
• /
• v.13 no.4
• /
• pp.65-78
• /
• 2007

This paper proposes a new method of weighted template matching for machine-printed numeral recognition. The proposed weighted template matching, which emphasizes the feature of a pattern using adaptive Hamming distance on local feature areas, improves the recognition rate while template matching processes an input image as one global feature. Template matching is vulnerable to random noises that generate ragged outlines of a pattern when it is binarized. This paper offers a method of chain code trimming in order to remove ragged outlines. The method corrects specific chain codes within the chain codes of the inner and the outer contour of a pattern. The experiment compares confusion matrices of both the template matching and the proposed weighted template matching with chain code trimming. The result shows that the proposed method improves fairly the recognition rate of the machine-printed numerals.

• The KIPS Transactions:PartD
• /
• v.11D no.4
• /
• pp.755-764
• /
• 2004

Recently, the rapid development of biotechnology brings the explosion of biological data and biological data host. Moreover, these data are highly distributed and heterogeneous, reflecting the distribution and heterogeneity of the Molecular Biology research community. As a consequence, the integration and interoperability of molecular biology databases are issue of considerable importance. But, up to now, most of the integrated systems such as link based system, data warehouse based system have many problems which are keeping the data up to date when the schema and data of the data source are changed. For this reason, the integrated system using web service technology that allow biological data to be fully exploited have been proposed. In this paper, we built the integrated system if the bio sequence information bated on the web service technology. The developed system allows users to get data with many format such as BSML, GenBank, Fasta to traverse disparate data resources. Also, it has better retrieval performance because the retrieval modules of the external database proceed in parallel.

• Geomechanics and Engineering
• /
• v.13 no.6
• /
• pp.893-906
• /
• 2017

Automatic large scale soil model generation is very critical stage for earthquake hazard simulation of urban areas. Manual model development may cause some data losses and may not be effective when there are too many data from different soil observations in a wide area. Geographic information systems (GIS) for storing and analyzing spatial data help scientists to generate better models automatically. Although the original soil observations were limited to soil profile data, the recent developments in mapping technology, interpolation methods, and remote sensing have provided advanced soil model developments. Together with advanced computational technology, it is possible to handle much larger volumes of data. The scientists may solve difficult problems of describing the spatial variation of soil. In this study, an algorithm is proposed for automatic three dimensional soil and velocity model development of southern part of the European side of Istanbul next to Sea of Marmara based on GIS data. In the proposed algorithm, firstly bedrock surface is generated from integration of geological and geophysical measurements. Then, layer surface contacts are integrated with data gathered in vertical borings, and interpolations are interpreted on sections between the borings automatically. Three dimensional underground geology model is prepared using boring data, geologic cross sections and formation base contours drawn in the light of these data. During the preparation of the model, classification studies are made based on formation models. Then, 3D velocity models are developed by using geophysical measurements such as refraction-microtremor, array microtremor and PS logging. The soil and velocity models are integrated and final soil model is obtained. All stages of this algorithm are carried out automatically in the selected urban area. The system directly reads the GIS soil data in the selected part of urban area and 3D soil model is automatically developed for large scale earthquake hazard simulation studies.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.11 no.4
• /
• pp.670-677
• /
• 2007

Virtual instruments are the mobile software designed to help users navigate, measure hidden environmental properties, or support various user interactions in a virtual environment. Over the past few years, we have developed several virtual instruments for educational virtual environments. However, the process of constructing virtual instruments is often difficult and time consuming because it requires the developers to understand not only the virtual reality systems but also mobile computing platforms. In this paper, we Int identify a few requirements for the development of virtual instruments. Then, we introduce the VIST (Virtual Instrument Scripting Toolkit), specifically designed for reducing the effort of designing virtual instruments. Finally, we will illustrate some applications of using VIST and then discuss the future research directions.

• Journal of the Korean Society for Computer Game
• /
• v.31 no.4
• /
• pp.121-128
• /
• 2018

Virtual reality is a technology that enables users to implement environments that are separate from the real world, and immersion is an important factor in implementing separate environments. However, a variety of studies have been conducted to solve this problem as the lack of awareness of the surrounding environment can lead to an unstable virtual reality game environment. Most studies are focused on solving problems through visualization. On the other hand, because visualizations are generally information that is not relevant to the space of virtual reality, research is needed on the effect of the degree of immersion in virtual reality to which they are applied. The guidelines are necessary because there are differences in individual tendencies and the factors that influence the immersion. In order to solve these two problems, we are going to conduct experiments on two systems: a survey based on the immersion tendency and a visualized communication of information about the surrounding environment. Through these results, we will measure the immersion of individuals and identify the impact of visualizations on virtual reality games by dividing them by their propensity to do so to present guidelines on the creation of virtual reality game environments based on the individual's tendency to engage in immersion.

• Journal of Korean Library and Information Science Society
• /
• v.52 no.3
• /
• pp.369-393
• /
• 2021

The legal deposit is a comprehensive and systemic method for acquiring a country's publications. This study aims to compare laws and regulations about legal deposit among several countries that have different histories and traditions and to supplement laws and regulations of Korea's legal deposit. To do this, research papers and laws, regulations, guides, web sites and online systems about legal deposit of eight countries including USA, United Kingdom, Canada, Australia, France, Japan, Singapore, and Korea were reviewed. This study tried to compare and analyse several categories including publications to be deposited or not deposited, requirements, due dates, expenses, and numbers of copies for deposit, and penalty for noncompliance with legal deposit. Also, online publications to be deposited or not deposited, requirements and methods for deposit were compared and analysed. At last, some suggestions were also made for improvement in laws and regulations of in Korea.

• The Journal of the Korea Contents Association
• /
• v.21 no.9
• /
• pp.312-321
• /
• 2021

With the full implementation of open banking in which both banks and fintech companies participate, changes in the whole society such as new types of products, services, and businesses are taking place. Whenever new systems and environments change, research on technology acceptance by system users has been continued, and this study also verified how the characteristics of open banking affect the perceived ease of use and usefulness of the Technology Acceptance Model, and the intention to use open banking. As a result of the study, it was found that both information provision, service interactivity, and system stability had a significant effect on perceived ease of use, usefulness, and intention to use open banking. In the future, open banking may bring significant benefits to data sharing, financial access, banking infrastructure, product innovation and pricing, but it is also expected to bring unexpected damage. Therefore, domestic financial institutions should actively cope with the situation where the business environment is greatly changing due to the digital environment change, and at the same time actively foster fintech companies and promote innovation in the financial industry.

• Journal of Information Technology Services
• /
• v.20 no.5
• /
• pp.119-136
• /
• 2021

Since the global spread of COVID-19, social distancing and untact service implementation have spread rapidly. With the transition to a non-face-to-face environment such as telework and remote classes, cyber security threats have increased, and a lot of cyber compromises have also occurred. In this study, cyber-attacks and response cases related to COVID-19 are summarized in four aspects: cyber fraud, cyber-attacks on companies related to COVID-19 and healthcare sector, cyber-attacks on untact services such as telework, and preparation of untact services security for post-covid 19. After the outbreak of the COVID-19 pandemic, related events such as vaccination information and payment of national disaster aid continued to be used as bait for smishing and phishing. In the aspect of cyber-attacks on companies related to COVID-19 and healthcare sector, we can see that the damage was rapidly increasing as state-supported hackers attack those companies to obtain research results related to the COVID-19, and hackers chose medical institutions as targets with an efficient ransomware attack approach by changing 'spray and pray' strategy to 'big-game hunting'. Companies using untact services such as telework are experiencing cyber breaches due to insufficient security settings, non-installation of security patches, and vulnerabilities in systems constituting untact services such as VPN. In response to these cyber incidents, as a case of cyber fraud countermeasures, security notices to preventing cyber fraud damage to the public was announced, and security guidelines and ransomware countermeasures were provided to organizations related to COVID-19 and medical institutions. In addition, for companies that use and provide untact services, security vulnerability finding and system development environment security inspection service were provided by Government funding programs. We also looked at the differences in the role of the government and the target of security notices between domestic and overseas response cases. Lastly, considering the development of untact services by industry in preparation for post-COVID-19, supply chain security, cloud security, development security, and IoT security were suggested as common security reinforcement measures.