• Journal of Radiation Protection and Research
• /
• v.26 no.3
• /
• pp.197-201
• /
• 2001

A risk analysis consists of a triplet, , where Si is the scenario identification; Pi is the probability of each scenario; and Xi is the consequences of each scenario. A new computing framework, OMAM (ORIGEN-MAAP4-MMCS), has been developed and applied for assessing the risk of a reference plant as well as radiation source terms using the concept of risk triplet. The result of this study using the OMAM framework presented in this paper, can contribute to producing domestic nuclear power plant's risk data base as well as to establishing severe accident management plans.

• Journal of the Korean Vacuum Society
• /
• v.19 no.6
• /
• pp.415-422
• /
• 2010

Recently as the reports on toxicity of some nanomaterials and the nanoproducts containing these nanomaterials are rapidly increasing, the safety management issues about nanomaterials and nanoproducts are emerging hot. Especially safety in the workplace and that of consumers and the protection of environment, in other words safeties throughout the life-cycle of nanomaterials and products become core issues. Despite the importance of such a safety management, however, it is very difficult to construct the hard regulatory framework for safety, owing to uncertainties and potentialities of nano-risk. In this paper I will look around the ethical principles and guidelines for safety management which are preferentially required before going into the discussion on the construction of hard-regulation such as law and something like that. Under the circumstance that hard-regulations for safety management are not implementable, these principles and guidelines are expected to play a leading part in building the responsible risk-governance framework for nanomaterials and nanoproducts, and finally to become a cornerstone of the hard risk-governance framework.

• Korea Multimedia Society
• /
• v.12 no.1
• /
• pp.32-42
• /
• 2008

• Journal of Korean Society for Quality Management
• /
• v.45 no.4
• /
• pp.665-676
• /
• 2017

Purpose: The purpose of this paper proposes an effective and systematic methods of risk management in product development project. Methods: This paper first discusses what risk factors be considered during product development period and then presented a model for preventive risk management. For that, this paper proposes how to evaluate the risk factors and risk events, and how to select prevention action for managing risk factors effectively. For this process, this paper uses well-known quality tools such as House of Quality (HOQ) and Failure Mode and Effects Criticality Analysis (FMECA) methods. Results: There is an inherent need for the development of robust risk management framework in order for product development projects to be successful. The identification and quantification of risk factors, risk events, and prevention actions can have significant effects on the success of a product development projects. Project managers can implement the proposed model to improve project success. Conclusion: The findings showed that this method would be effective for project managements in dealing with risk management issues in product development projects. This method presented would be an one of good guidelines for practitioners in the industry.

• Journal of Information Technology Services
• /
• v.15 no.4
• /
• pp.41-62
• /
• 2016

In Internet of Things (IoT) era, more diverse types of information are collected and the environment of information usage, distribution, and processing is changing. Recently, there have been a growing number of cases involving breach and infringement of personal information in IoT services, for examples, including data breach incidents of Web cam service or drone and hacking cases of smart connected car or individual monitoring service. With the evolution of IoT, concerns on personal information protection has become a crucial issue and thus the risk analysis and management method of personal information should be systematically prepared. This study shows risk factors in IoT regarding possible breach of personal information and infringement of privacy. We propose "a risk analysis framework of protecting personal information in IoT environments" consisting of asset (personal information-type and sensitivity) subject to risk, threats of infringement (device, network, and server points), and social impact caused from the privacy incident. To verify this proposed framework, we conducted risk analysis of IoT services (smart communication device, connected car, smart healthcare, smart home, and smart infra) using this framework. Based on the analysis results, we identified the level of risk to personal information in IoT services and suggested measures to protect personal information and appropriately use it.

• International Journal of Computer Science & Network Security
• /
• v.21 no.12spc
• /
• pp.586-596
• /
• 2021

Software organisations follow different methodologies for the development of software. The software development methodologies are mainly divided into two categories, including plan-driven and agile development. To attain project success, it is very significant to consider risk management during whole project. Agile development is considered risk-driven, but many risks are unreported at the industrial level. The risks can be divided into three categories, including (i) development risks, (ii) organisations risks, and (iii) people-oriented risks. This paper deals with Development risks specifically. Several risks related to development are faced by people working in the industry while dealing with agile development. Their management among the industry is a big issue, so this paper emphasises ARMF based on development-related risks by following agile development. This research work will help software organisations to prevent different project-related risks during agile development. The risks are elicited at two-level, (i) literature-based and (ii) IT industry based. A systematic literature review was performed for eliciting the agile risks from the literature. Detailed case studies and survey research methods were applied for eliciting risks from IT industry. Finally, we merged the agile development risks from literature with standard industrial risks. Hence, we established an agile risk mitigation framework ARMF based on agile development and present a groundwork established in light of empirical examination for extending it in future research.

• KDI Journal of Economic Policy
• /
• v.39 no.3
• /
• pp.43-62
• /
• 2017

This paper proposes an integrated risk-management framework that includes 1) measuring the risk of credit portfolios, 2) implementing a (macro) stress test, and 3) setting risk limits using the estimated systematic latent factor specific to capture the housing market cycle. To this end, we extract information from a set of real-estate market variables based on the FAVAR methodology proposed by Bernanke, Boivin and Eliasz (2005). Then, we show the method by which the estimated systematic factor is applied to risk management in the housing market in an integrated manner within the Vasicek one-factor credit model. The proposed methodology is well fitted to analyze the risk of slow-moving and low-defaultable forms of capital, such as alternative investments.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.32 no.6
• /
• pp.1183-1192
• /
• 2022

Information and Information processing systems must maintain a certain level of security during the total life cycle of Information. To maintain a certain level of security, security management processes are applied to software, automobile development, and the U.S. federal government information system over a life cycle, but theme of no similar security management process in Korea. This paper proposes a Korean-style security risk management framework to maintain a certain level of security in the total life cycle of information and information processing system in the defense sector. By applied to the defense field, we intend to present the direction of defense security work in the future and induce an shift in security paradigm.

• Journal of Information Processing Systems
• /
• v.10 no.2
• /
• pp.240-255
• /
• 2014

Cloud computing has increasingly been drawing attention these days. Each big company in IT hurries to get a chunk of meat that promises to be a whopping market in the future. At the same time, information is always associated with security and risk problems. Nowadays, the handling of these risks is no longer just a technology problem, with a good deal of literature focusing on risk or security management and framework in the information system. In this paper, we find the specific business meaning of the BMIS model and try to apply and leverage this model to cloud risk. Through a previous study, we select and determine the causal risk factors in cloud service, which are also known as CSFs (Critical Success Factors) in information management. Subsequently, we distribute all selected CSFs into the BMIS model by mapping with ten principles in cloud risk. Finally, by using the leverage points, we try to leverage the model factors and aim to make a resource-optimized, dynamic, general risk control business model for cloud service providers.

• The KIPS Transactions:PartA
• /
• v.18A no.4
• /
• pp.151-158
• /
• 2011

For the purpose of cost saving and sales promotion, various industry companies have introduced logistics management techniques in their field. However, enterprises faced to damages because proper products can not be provided to customers in basic logistics 3S1L(speedy, safely, surely, and low) principles for environments changing rapidly and inflexible business processes. So, we need the ability in coping with risk to handle this phenomenon. In particular, the shipper of key decisions of supply chain risk management requires continuous exchange and collection of logistics information in the third-party logistics. However the current SCRMS(Supply Chain Risk Management System) is not sufficient to cover the shipper's various needs and to recognize and respond to emergency situations. Therefore, this paper proposes an active SCRMS framework through the reconsideration about the previous research on SCRM and rearrangement of risk factors for coping with those problems. in addition, it verifies an efficiency through a stability comparison with the current system.