• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.17 no.5
• /
• pp.538-547
• /
• 2016

With respect to the factors affecting information security awareness and behavior, the study of the relevance of the concept of optimistic bias is actively used in psychology. In other words, this study examines whether the optimistic bias of individuals affects information security in the field. In this sense, this study attempted to demonstrate the relevance of optimistic bias in information security behavior and awareness. A questionnaire survey was conducted targeting 111 people engaged in domestic private enterprises. The survey results showed that this personalized optimistic bias exists because of empirical factors related to personal security. Optimistic bias affects the security awareness information. The greater the optimistic bias, the lower the awareness and recognition of information security. In other words, optimistic bias affects information security awareness. Reducing the effects of optimistic bias is expected to reduce information security incidents, such as information leakages. However, the variety of information related ethical activities of a company did not have any effect on the information security awareness. Most previous studies have only examined the effect optimistic bias in the field of health. Therefore, this study fills an important gap in research in IT.

• International Journal of Computer Science & Network Security
• /
• v.23 no.8
• /
• pp.63-76
• /
• 2023

Identity and access management in cloud computing is one of the leading significant issues that require various security countermeasures to preserve user privacy. An authentication mechanism is a leading solution to authenticate and verify the identities of cloud users while accessing cloud applications. Building a secured and flexible authentication mechanism in a cloud computing platform is challenging. Authentication techniques can be combined with other security techniques such as intrusion detection systems to maintain a verifiable layer of security. In this paper, we provide an interactive, flexible, and reliable multi-factor authentication mechanisms that are primarily based on a proposed Authentication Method Selector (AMS) technique. The basic idea of AMS is to rely on the user's previous authentication information and user behavior which can be embedded with additional authentication methods according to the organization's requirements. In AMS, the administrator has the ability to add the appropriate authentication method based on the requirements of the organization. Based on these requirements, the administrator will activate and initialize the authentication method that has been added to the authentication pool. An intrusion detection component has been added to apply the users' location and users' default web browser feature. The AMS and intrusion detection components provide a security enhancement to increase the accuracy and efficiency of cloud user identity verification.

• Journal of Information Technology Services
• /
• v.16 no.3
• /
• pp.147-165
• /
• 2017

Recently, there have been numerous issues about password breaches and it is becoming important for the users to manage their passwords. In practice, the online service provider are asking the online users to change their passwords periodically. However, majority of the users are not changing their passwords regularly, and this can increase the risk of password breach. The purpose of this study is to investigate whether 'fear appeals' and 'message framing' enhance the behavior of changing passwords by the online users. Furthermore, we identify the mechanism on how the behavior of changing passwords is enabled using protection motivation theory. The results of an online experiment show that the online users who are exposed to 'fear appeals' perceived a more vulnerability and severity of password breaches, which in turn, increased the intention of changing their password. In addition, we found that perceived severity of password breaches affect fear positively. Moreover, we found that fear has significant impact on the willingness of changing passwords. Finally, Message framing plays a moderating role between fear and change intentions. That is, in a situation where 'fear appeal' is presented, it means that 'gain framing' is more effective than 'loss framing' These findings suggest that the online service providers may need to use 'fear appeals' to the online users. Security managers can address issues related to the password breaches by carefully designing 'fear appeals'.

• Convergence Security Journal
• /
• v.18 no.5_1
• /
• pp.45-51
• /
• 2018

As data utilization and importance becomes important, data-related accidents and damages are gradually increasing. Especially, insider threats are the most harmful threats. And these insider threats are difficult to detect by traditional security systems, so rule-based abnormal behavior detection method has been widely used. However, it has a lack of adapting flexibly to changes in new attacks and new environments. Therefore, in this paper, we propose an adaptive anomaly movement detection framework based on a statistical Markov model to detect insider threats in advance. This is designed to minimize false positive rate and false negative rate by adopting environment factors that directly influence the behavior, and learning data based on statistical Markov model. In the experimentation, the framework shows good performance with a high F2-score of 0.92 and suspicious behavior detection, which seen as a normal behavior usually. It is also extendable to detect various types of suspicious activities by applying multiple modeling algorithms based on statistical learning and environment factors.

• Journal of Digital Convergence
• /
• v.19 no.1
• /
• pp.89-97
• /
• 2021

The purpose of this study is to verify the influence of the cognitive process related to the organizational citizenship behavior. The research method consisted of the cross-design of the prospect dimension and goal orientation dimension, and information security factors consisted of distributive justice, response efficacy, self efficacy, and organizational citizenship behavior. As a result of the study, the dimension of prospect had a significant effect on response efficacy and self efficacy, and it was found that the influence of the gain condition was greater than that of the loss condition. The goal orientation dimension had a significant effect on response efficacy and self efficacy, and it was found that the influence of the growth condition was greater than that of the validation condition. The research model that explained the relationship between information security factors appeared as a partial mediating model between distributive justice, response efficacy, and organizational citizenship behavior. The implications of this study suggest that it is necessary to establish an information security strategy in combination with individual decision-making factors and organizational culture factors.

• Korean Security Journal
• /
• no.13
• /
• pp.91-112
• /
• 2007

The purpose of this study is to identify effect of superior leadership style in private security service on job satisfaction. The survey research tool was a questionnaire. The subjects of this study were selected from the population of private security service employee's and sampled by using convenience sampling. Data obtained from 448 athletes were used. Questionnaire was used as a tool to attain the purpose of this study, SPSS 12.0 program was used to analyze the data, and statistical tests including correlation analysis and multiple regression analysis were conducted at significance level of p<.05. The results of this study were as follows. First, the democratic behavior, affirmative feedback, training and direction and social support in leadership style have a significant effect on a satisfaction of relation with supervisor. Second, the democratic behavior, affirmative feedback and training and direction in leadership style have a significant effect on a satisfaction of relation with coworkers. Third, the democratic behavior, affirmative feedback and training and direction in leadership style have a significant effect on a satisfaction of work. Fourth, the democratic behavior and authoritative behavior in leadership style have a significant effect on a satisfaction of pay. Finally, the democratic behavior, affirmative feedback and training and direction in leadership style have a significant effect on a satisfaction of promotion opportunity.

• The Journal of the Korea Contents Association
• /
• v.12 no.5
• /
• pp.380-392
• /
• 2012

The study of security personnel and psychological empowerment and organizational commitment to investigate the relationship between prosocial behavior in 2011 in Seoul, served in the private security companies after being selected as a security guard purposive sampling method using a 300 extracted samples, but the number of cases used in the study a total of 282 people. This study SPSSWIN 18.0 using factor analysis, reliability analysis, multiple regression analysis, path analysis, the following conclusions were obtained. First, psychological empowerment on organizational commitment affects. In other words, self-determination, job performance, impact, meaning a higher level of calculation ever higher levels of commitment and affective commitment. Second, the psychological empowerment influences prosocial behavior. In other words, self-determination, meaningfulness, influence job performance higher level of customer service and increases coordination Third, organizational commitment affects the prosocial behavior. In other words, the calculation ever commitment, emotional commitment, the higher the customer service, increases the level of coordination. Fourth, psychological empowerment and organizational commitment prosocial behavior direct and indirect impacts.

• The Journal of the Korea Contents Association
• /
• v.19 no.1
• /
• pp.108-116
• /
• 2019

In this paper, we propose a method to apply artificial intelligence technology efficiently to integrated security control technology. In other words, by applying machine learning learning to artificial intelligence based on big data collected in integrated security control system, cyber attacks are detected and appropriately responded. As technology develops, many large capacity Is limited to analyzing individual logs. The analysis method should also be applied to the integrated security control more quickly because it needs to correlate the logs of various heterogeneous security devices rather than one log. We have newly proposed an integrated security service model based on artificial intelligence, which analyzes and responds to these behaviors gradually evolves and matures through effective learning methods. We sought a solution to the key problems expected in the proposed model. And we developed a learning method based on normal behavior based learning model to strengthen the response ability against unidentified abnormal behavior threat. In addition, future research directions for security management that can efficiently support analysis and correspondence of security personnel through proposed security service model are suggested.

• Journal of KIISE:Computing Practices and Letters
• /
• v.16 no.12
• /
• pp.1264-1268
• /
• 2010

In this paper, we propose a behavior pattern analysis method for users tasking on hands-on security exercise missions. By analysing and evaluating the observed user behavior data, the proposed method discovers some significant patterns able to contribute mission successes or fails. A Markov chain modeling approach and algorithm is used to automate the whole analysis process. How to apply and understand our proposed method is briefly shown through a case study, "network service configurations for secure web service operation".

• Journal of Information Technology Applications and Management
• /
• v.27 no.2
• /
• pp.1-21
• /
• 2020

The purpose of this study is to investigate the behavioral factors affecting the security attitude and intention to use biometrics password based on the protection motivation theory. This study also investigates security awareness training to understand trust, privacy, and security vulnerability regarding biometric authentication password. This empirical analysis reveals security awareness training boosts the protection motivational factors that affect on the behavior and intention of using biometric authentication passwords. This study also indicates that biometric authentication passwords can be used when the overall belief in a biometric system is present. After all, security awareness training enhances the belief of biometric passwords and increase the motivation to protect security threats. The study will provide insights into protecting security vulnerability with security awareness training.