• Convergence Security Journal
• /
• v.11 no.5
• /
• pp.99-108
• /
• 2011

The purpose of this study is to profile actual conditions of personal information protection systems operated in overseas countries and examine major considerations of personal information that security service providers must know in the capacity of privacy information processor, so that it may contribute to preventing potential occurrence of any legal disputes in advance. Particularly, this study further seeks to describe fundamental idea and principle of said Personal Information Protection Act; enhancement of various safety measures (e.g. collection / use of privacy data, processing of sensitive information / personal ID information, and encryption of privacy information); restrictions on installation / operation of video data processing devices; and penal regulations as a means of countermeasure against leakage of personal information, while proposing possible solutions to cope with these matters. Using cases among foreign countries for this study. Possible solutions proposed by this study can be summed up as follows: By changing minds with sufficient legal reviews, it is required for security service providers to 1) clearly and further specify any purposes of collecting and using privacy information, if possible, 2) obtain any privacy information by legitimate means as it is necessary to collect such information, 3) stop providing any personal information for the 3rd parties or for any other purposes except fundamental purposes of using privacy information, and 4) have full knowledge about duty of safety measure in accordance with safe maintenance of privacy information and protect any personal information from unwanted or intentional leakage to others.

• The Journal of the Korea institute of electronic communication sciences
• /
• v.14 no.1
• /
• pp.111-118
• /
• 2019

For the security of a vast amount of information, it has been started to diagnose the site as a way of operating and managing the information owned by a company holding assets, to establish indexes to check the actual status and all kinds of standards to obtain security, and also to classify the information assets based on that. This has been extended to many different areas including policies to operate and manage information assets, services, the management of owned devices as physical assets, and also the management of logical assets for application software and platforms. Some of these information assets are already being operated in reality as new technology in new areas, for example, Internet of Things. Of course, a variety of electronic devices like Smart Home are being used in ordinary families, and unlike in the past, these devices generate a series of information life cycles such as accumulating and processing information. Moreover, as even distribution is now being realized, we are facing a task to secure the stability of information assets and also information that assets are holding. The purpose of this study is to suggest and apply standard security policy by moduling methods for information assets owned by companies and even families and obtain the enhancement of confidentiality as well as integrity.

• Convergence Security Journal
• /
• v.18 no.1
• /
• pp.117-128
• /
• 2018

The purpose of this paper is to analyze the behavior of North Korea's cyber attack against South Korea since 2009 based on major international security theories and suggest South Korea's policy option. For this purpose, this paper applied the behavioral domain and characteristics of 'cyber power' and 'coercion dynamics' model, which are attracting attention in international security studies. The types of cyber attacks from North Korea are classified into the following categories: power-based incarceration, leadership attacks and intrusions, military operations interference, and social anxiety and confusion. In terms of types and means of cyber power, North Korean GPS disturbance, the Ministry of Defense server hacking and EMP are hard power with high retaliation and threat and cyber money cashing and ransomware are analyzed by force in the act of persuasion and incentive in the point of robbing or asking for a large amount of money with software pawns. North Korea 's cyber attack has the character of escape from realistic sanctions based on the second nuclear test. It is important for South Korea to clearly recognize that the aggressive cyberpower of North Korea is changing in its methods and capabilities, and to ensure that North Korea's actions result in far greater losses than can be achieved. To do this, it is necessary to strengthen the cyber security and competence to simultaneously attack and defend through institutional supplement and new establishment such as cyber psychological warfare, EMP attack preparation, and enhancement of security expertise against hacking.

• Asian-Australasian Journal of Animal Sciences
• /
• v.26 no.1
• /
• pp.1-18
• /
• 2013

The elements that determine the success of development projects on goats and the prerequisites for ensuring this are discussed in the context of the bewildering diversity of goat genetic resources, production systems, multifunctionality, and opportunities for responding to constraints for productivity enhancement. Key determinants for the success of pro-poor projects are the imperatives of realistic project design, resolution of priorities and positive impacts to increase investments and spur agricultural growth, and appropriate policy. Throughout the developing world, there exist 97% of the total world population of 921 million goats across all agroecological zones (AEZs), including 570 breeds and 64% share of the breeds. They occupy a very important biological and socioeconomic niche in farming systems making significant multifunctional contributions especially to food, nutrition and financial security, stability of farm households, and survival of the poor in the rural areas. Definitions are given of successful and failed projects. The analyses highlighted in successful projects the value of strong participatory efforts with farmers and climate change. Climate change effects on goats are inevitable and are mediated through heat stress, type of AEZ, water availability, quantity and quality of the available feed resources and type of production system. Within the prevailing production systems, improved integrated tree crops - ruminant systems are underestimated and are an important pathway to enhance C sequestration. Key development strategies and opportunities for research and development (R and D) are enormous, and include inter alia defining a policy framework, resolution of priority constraints using systems perspectives and community-based participatory activities, application of yield-enhancing technologies, intensification, scaling up, and impacts. The priority for development concerns the rainfed areas with large concentrations of ruminants in which goats, with a capacity to cope with heat tolerance, can be the entry point for development. Networks and networking are very important for the diffusion of information and can add value to R and D. Well formulated projects with clear priority setting and participatory R and D ensure success and the realisation of food security, improved livelihoods and self-reliance in the future.

• Convergence Security Journal
• /
• v.14 no.3_1
• /
• pp.35-44
• /
• 2014

It has been shown that the lack of sufficient defense industry cooperation between Korea and the US. The severe imbalance in defense trade between tow countries and Korea's weak defense industrial base has been a problem. This paper suggests the enhancement of defense industry cooperation with the US as a defense policy. The US policy has been changed to utilize the globalization of defense industries. The following cases were analyzed to show the policy change; The security of supply arrangement with 6 countries, the defense cooperation treaty with the United Kingdom and Australia. the defense Memorandum of Understanding with 23 countries, and the international cooperation with 8 countries for F-35 JSF program. Korea government needs to sign a defense MOU with U.S. and the defense industries are recommended to increase the opportunities of weapon system co-development and co-production. So that the Korea defense industry may improve competitiveness and to overcome the current weaknesses.

• Korean Security Journal
• /
• no.36
• /
• pp.493-523
• /
• 2013

The purpose of this research is to deduce the frailties of the operating condition of Korea's national crisis management system through a comprehensive perspective analysis. It is then to present efficient measures through the enhancement of these infirmities. For this, after examining the fundamental theory, we presented a development direction based on the current status of the 6 key systems composing the national crisis management system. We also included items regarding each of the policy proposal in our conclusion. The fundamental theory of Korea's national crisis management system has been integrated based on a comprehensive security concept. However, the system development which drives the integrated structure still remains solely as a legal and structural category. Thus, operating, informing-oriented, supporting management, and rearing professional manpower systems have yet to be cultivated with efficiency. In conclusion, this research is to present a development direction from a conceptual dimension and to analyze the current status of the 6 key systems which are law, organization, operation, information-oriented, support management, training, and education. Finally, this research highlights the policy measures to fully maximize system efficiency.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.22 no.5
• /
• pp.805-811
• /
• 2018

Recently, Format-Preserving-Encryption (FEA) was suggested by the National Security Research institute (NSR) as an encryption method while maintaining the format without a distortion to the intended information to be encrypted. In this paper, we propose a scheme to solve conventional cyber security problems by using FEA scheme. First, we present the method to encrypt signatures and extensions with FEA in order to effectively defend against Ransomeware attacks. This technique can mitigate the exposure to the Ransomeware by encrypting the minimum information. Second, in order to reduce the secret information for Steganography, we introduce a new way to minimize the secret information with FEA. Finally, we compare the operation speed by encryption with FEA and Lightweight Encryption Algorithm (LEA), furthermore when we optimize FEA we want to compare with the performance improvement accompanying with it.

• KIISE Transactions on Computing Practices
• /
• v.22 no.4
• /
• pp.178-183
• /
• 2016

To enhance the reliability of programs, developers use fuzzing tools in test processes to identify vulnerabilities so that they can be fixed ahead of time. In this case, the developers consider the security-related vulnerabilities to be the most critical ones that should be urgently fixed to avoid possible exploitation by attackers. However, developers without much experience of analysis of vulnerabilities usually rely on tools to pick out the security-related crashes from the normal crashes. In this paper, we suggest a static analysis-based tool to help developers to make their programs more reliable by identifying security-related crashes among them. This paper includes experimental results, and compares them to the results from MSEC !exploitable for the same sets of crashes.

• Health Policy and Management
• /
• v.24 no.3
• /
• pp.242-253
• /
• 2014

Background: The low benefit coverage rate of South Korea's health security system causes catastrophic health expenditure. And catastrophic health expenditure can be the cause of the transition to and persistence of poverty. This study was conducted to ascertain the effect of catastrophic health expenditure on the transition to and persistence of poverty, using 6 years of the Korea Welfare Panel Study Data. Methods: This study was conducted among the 22,528 households that participated in the Korea Welfare Panel Study, 2007-2012. Catastrophic health expenditure was defined as equal to or exceeds thresholds (10%, 20%, 30%, and 40%) of household's capacity to pay. The effect of catastrophic health expenditure on the transition to and persistence of poverty was ascertained via multivariate logistic regression. Results: Four-point-seven percent to 20.6% of the households are facing catastrophic health expenditure. Rates of the transition to (relative risk [RR], 18.6 to 30.2) and persistence of (RR, 74.8 to 76.0) poverty of households facing catastrophic health expenditure was higher than households not facing catastrophic health expenditure. Even after adjusting the characteristics of the household and the household head, catastrophic health expenditure was found to affect transition to (odds ratio [OR], 2.11 to 3.04) and persistence of (OR, 1.53 to 1.70) poverty. Conclusion: To prevent catastrophic health expenditure and transition to and persistence of poverty resulting from catastrophic health expenditure, the reinforcement of South Korea's health security system including the benefit coverage enhancement is required.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.27 no.3
• /
• pp.413-426
• /
• 2017

In this paper, we propose an adder that can be applied to data encrypted with a fully homomorphic encryption scheme and an addition method with improved performance that can be applied when adding multiple data. The proposed arithmetic adder is based on the Kogge-Stone Adder method with the optimal circuit level among the existing hardware-based arithmetic adders and suitable to apply the cryptographic SIMD (Single Instruction for Multiple Data) function on encrypted data. The proposed multiple addition method does not add a large number of data by repeatedly using Kogge-Stone Adder which guarantees perfect addition result. Instead, when three or more numbers are to be added, three numbers are added to C (Carry-out) and S (Sum) using the full-adder circuit implementation. Adding with Kogge-Stone Adder is only when two numbers are finally left to be added. The performance of the proposed method improves dramatically as the number of data increases.