• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.28 no.2
• /
• pp.501-511
• /
• 2018

The purpose of this study is to develop the performance evaluation indicator of information security training program for developing the next generation of top security leaders. Through literature review and focus group interview, we derived the performance areas and indicators based on the logic model. We conducted AHP(Analytic Hierarchy Process) questionnaire to calculate the weight of the derived indicators, and developed the performance indicator based on the survey results. Performance indicators were composed of 18 indicators in four main categories.

• The Journal of Society for e-Business Studies
• /
• v.18 no.3
• /
• pp.125-142
• /
• 2013

As a reinforcing strategic-alignment of IT business, Financial Service becomes more rely on IT systems. It needs to continuous information security activities to provide a secure and reliable finance service. Performance measurement of information security activities can be useful for decision and management support. The purpose of this study is to derive CSF(Critical Success Factor) and KPI(Key Performance Indicator) based on K-ISMS, Financial IT Information Security Standards. Providing a rationale can be used to determine key performance indicators, which are utilized as basic data for establishing security policies for financial IT security competency.

• Asia pacific journal of information systems
• /
• v.9 no.4
• /
• pp.181-201
• /
• 1999

This study presents an information security level index and a quantification scheme. A comprehensive survey on previous researches in information security checklists has been performed. A candidate indicator list for information security level has been developed, Desirability of each indicator has been tested by 4 criteria, They are general validity, relative importance, probability of accident and impact of accident. 67 experts' opinion has been collected and analysed. The result shows that selected indicators are a very good candidate set for the determination of information security level. A factor analysis shows indicators are well structured. There exists strong correlation between validity and probability, validity and impact, and importance and probability. A quantification scheme of information security index has been developed by experts' judgement and statistical tests.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.22 no.3
• /
• pp.637-644
• /
• 2012

In our current information focused society, information is regarded as a core asset and the leakage of customers' information has emerged as a critical issue, especially in financial companies. It is very likely that the technology that safeguards which is currently in commercial use is not focused at an enterprise level but is fragmented by function or by only guards portions of a customer's personal information. Therefore, It is necessary to study the systems which monitor the indicators of access at an enterprise level in order to preemptively prevent the compromise of such data. This study takes an enterprise perspective on such systems for a financial company. I will focus on examination of the methods of implementation of the monitoring system, the application of pattern analysis and examination of Security Risk Indicators (SRI). A trial of the monitoring system provided security managers and related departments with proper screening capabilities of information. Therefore, it is possible to establish a systemic counter-plans based on detectable patterns.

• Journal of Families and Better Life
• /
• v.11 no.1
• /
• pp.107-118
• /
• 1993

A dimension of well-being economic security was analyzed and compared with economic adequacy. Again it was tested whether two indicators of economic security(short-term vs. long-term) yield same distribution across all household groups. Economic Security was defined as the household ability to sustain a given level of consumption in the case of economic emergency; specifically loss of income. Measure of 8 different kinds of economic security were constructed from household net worth including and excluding home equity. Data were taken from the 1988 U.S. Consumer Expenditure Survey and 2148 households were selected to test hypotheses concerning the economic security of American households Empirical results showed a very low level of economic security in general. The first hypothesis that distribution of economic adequacy and economic security are same across all population groups was rejected. On the average security measure rather than adequacy measure was favor to white female-headed households and households who have old and highly educated house-holder. The second hypothesis that the indicators of long-term and short-term economic security yield the same results across all household was not rejected. In general the level of economic security was relatively higher when long-term indicator was used than short-term indicator was however the direction and relative size of effect of income and each control variable was almost same.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.20 no.6
• /
• pp.221-235
• /
• 2010

Internet service providers provide various security services, such as firewall, intrusion detection, intrusion prevention, anti-virus, along with their main Internet services. Those security service users have no idea what kind of quality services they are guaranteed. And therefore, Internet users interest in Security Service Level Agreement(SLA) increases as their interest in secure Internet service increases. However, there wasn't any researches in the S-SLA area domestically and there are only limited SLA indexes related to system or service maintenances at the moment. Therefore, this paper analyses security functions in IPS services and categorize them into common and independent security functions. Finally to improve quality of security services, this paper proposes S-SLA indexes depending on the different security levels. This will be subdivide into agreement on security service.

• The Journal of Korean Association of Computer Education
• /
• v.16 no.1
• /
• pp.73-80
• /
• 2013

Government promotes that the strategy of national R&D converts from catch-up R&D type to leading R&D type for the future growth and national competitiveness according to the recent paradigm shift in the research and development. So the many national researches about foundation, source and core technology are actively being made. As a result of these researches, the security has become an important part of success factor in R&D. And so various security diagnosis and evaluation is being conducted about national R&D program. Existing the research security evaluation models are classified domains in terms of security management and created evaluation indicators according to the domains. However the models are inappropriate in case of researchers doing self-diagnosis of research security. This paper set up the domains in aspect of research management and then proposed the evaluation indicator of research security according to the domains. The evaluation indicator model that is suggested can be utilized in self-diagnosis of research security effectively.

• Nuclear Engineering and Technology
• /
• v.50 no.7
• /
• pp.1168-1172
• /
• 2018

This study went beyond making an indicator simply based on theoretical arguments, and explored a wide spectrum of different types of perceptions about energy safety to make a concept of energy safety for the Korean society. The energy safety schemata of people can be divided into three types. Type1 is concern about multi-level risks-responsibility-centric, type2 is concern about security and personal burden-expertise-centric, and type3 is concern about health and personal burden-responsibility-centric. Questions were designed on the basis of the characteristics, differences and commonalities of the three types of perceptions, explored through the Q methodology, and Koreans' perception of nuclear safety was examined. Based on the results of this research the following components of trust in nuclear safety were derived, risk perception, responsibility, honesty, expertise and procedural justification. The items for specifically evaluating them were developed, and factor analysis was conducted, and as a result, the validity of each item was proven. The components of the nuclear safety trust indicator do not exist independently, but influence each other continuously through interactions. For this reason, rather than focusing on any one of them, laws and systems must be improved first so that they can move together in one big frame.

• Proceedings of the Korea Institutes of Information Security and Cryptology Conference
• /
• 2001.11a
• /
• pp.331-334
• /
• 2001

본 논문에서는 현재 그 중요성이 증가하고 있는 정보보호관리체계에 대하여 기존의 국내·외 정보보호관리체계 지침이나 표준 문서들이 단지 일반적인 가이드라인을 제공 할 뿐, 평가나 측정, 혹은 인증을 위해 필요한 상세하고 객관적인 지표가 없다는 점을 파악하고, 이러한 주요 지표들을 개발하기 위한 프레임워크를 제시하고자 한다. 이 프레임워크는 정보보호관리 국제 표준인 ISO/IEC TR 13335 GMITS에서 정의하고 있는 정보보호관리 프로세스를 기준으로 적절한 정보보호관리 프로세스를 도출한 다음, 현재 정보기술 통제 기준으로 사용중인 COBIT의 각 주요 지표들을 위에서 도출된 프로세스별로 적용시키는 것이다. 즉 정보보호관리 프로세스별 주요목표지표(KGI - Key Goal Indicator), 주요성과지표(KPI - Key Performance Indicator), 그리고 핵심성공요소(CSF - Critical Success Factor)들을 개발하여 정보보호관리체계에 대한 상세하고 객관적인 평가와 측정을 가능하게 하고 이를 통해 총체적인 정보보호관리 통제 이룩하고자 한다.

• International Journal of Computer Science & Network Security
• /
• v.21 no.11
• /
• pp.43-48
• /
• 2021

The article proposes a method of modeling a comprehensive indicator for evaluating the effectiveness of regional management of innovation activity. This will make it possible to assess the effectiveness of personnel, financial and credit and foreign economic activity of the regions from the standpoint of an integrated approach. The modeling technique is proposed to be carried out using the tools of taxonomic analysis and the calculation of a complex indicator of the effectiveness of the innovation activity management.