• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.29 no.4
• /
• pp.785-794
• /
• 2019

Recently Deep Learning technology, one of the fourth industrial revolution technologies, is used to identify the hidden meaning of network data that is difficult to detect in the security arena and to predict attacks. Property and quality analysis of data sources are required before selecting the deep learning algorithm to be used for intrusion detection. This is because it affects the detection method depending on the contamination of the data used for learning. Therefore, the characteristics of the data should be identified and the characteristics selected. In this paper, the characteristics of malware were analyzed using network data set and the effect of each feature on performance was analyzed when the deep learning model was applied. The traffic classification experiment was conducted on the comparison of characteristics according to network characteristics and 96.52% accuracy was classified based on the selected characteristics.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2014.10a
• /
• pp.398-401
• /
• 2014

Due to recent arise of cybercrime, importance of cyber security is highlighted more than ever. Korean government has been running Korea Cryptographic Module Validation Program, namely KCMVP, to validate security level of cryptographic modules for public organizations: indeed, many are achieving the validation. According to the program, operating environments for any specific cryptographic module are fixed. In other words, running validated module in other software environment is strictly prohibited. However, this paper asserts that it is possible for a C language based module to operate in Java based environment as long as the module is running on a validated environment. We expect this paper to help saving great amount of money and time for developing another cryptographic modules for the same operating environment. Also, this method will provide an idea for developing faster modules.

• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.11 no.9
• /
• pp.3451-3457
• /
• 2010

Cyber security assessment is the process of determining how effectively an entity being assessed meets specific cyber security objectives. Cyber security assessment helps to measure the degree of confidence one has and to identify that the managerial, technical and operational measures work as intended to protect the I&C systems and the information it processes. Recently, needs for cyber security on digitalized nuclear I&C systems are increased. However the overall cyber security program, including cyber security assessment, is not established on those systems. This paper presents the methodology of cyber security assessment which is appropriate for nuclear I&C systems. This methodology provides the qualitative assessments that may formulate recommendations to bridge the security risk gap through the incorporated criteria. This methodology may be useful to the nuclear organizations for assessing the weakness and strength of cyber security on nuclear I&C systems. It may be useful as an index to the developers, auditors, and regulators for reviewing the managerial, operational and technical cyber security controls, also.

• Journal of the Korean Society of Marine Environment & Safety
• /
• v.19 no.1
• /
• pp.45-51
• /
• 2013

In order to facilitate the private maritime security system with high quality guard services, the status of private security companies and the security instructor system which has been operated in land side, are analyzed. Through screening the spectrums of private maritime security and analyzing the status of maritime security guard, the characteristics and expertise of maritime guard service, and it's system need are elicited. we propose the system of marine civil guard officer who will play a major role in private maritime security domain, and design the job requirements, the subjects of qualification test and the education program to enhance his professionalism and practicality. Moreover, the enactment of a provision on marine guard company in Marine guard law will be the platform to develop a private maritime security industry and to strengthen international competitiveness through supervising and piloting private guard service at sea by Korea coast guard.

• Convergence Security Journal
• /
• v.11 no.5
• /
• pp.21-29
• /
• 2011

This study is to investigate how security organizational mentoring type and mentoring function affects organizatio nal commitment. This study had selected security from 5 different security organizations of 2010 which are located i n capital area. Using judgment sampling method, 198 security were drawn for the final study. The survey used in th is study is composed of 37 questions. To practice frequency analysis, factorial analysis, reliability analysis and regre ssion, a program called SPSSWIN 18.0 was used. The value of Cronbach's ${\alpha}$, which shows the reliability of the stud y, appeared to be over .622. The result is: First, security organizational mentoring type affects mentoring function. T hat is, when a systematic mentoring is activated, friendship protecting function, career managing function and sociopsychological function are promoted. Second, security organizational mentoring type affects organizational commitmen t. That is, when a systematic mentoring is activated, organizational commitment is promoted. Third, security organiz ational mentoring function affects organizational commitment. That is, increased friendship protecting function, career managing function, socio-psychological function and role model function results in increased organizational commitment.

• Journal of Industrial Convergence
• /
• v.20 no.3
• /
• pp.23-31
• /
• 2022

Recently, the importance of the role of the university information security department in nurturing security experts to defend against cyber attacks is increasing day by day. The current university security curriculum has a problem in that the proportion of theoretical education is high and the professionalism of practical education is relatively low. This study analyzed the recent educational programs of domestic and foreign security education institutions for the purpose of improving the practical ability of the Department of Security, designing a class model suitable for the core specialization process, and suggesting the direction. The proposed model improves the existing problems of basic class connection and security practice curriculum roadmap, and additionally explains the practice program of the five core specialized subjects. This study intends to contribute to the improvement of the quality of the curriculum and educational model of each university's security department.

• Journal of Korea Multimedia Society
• /
• v.20 no.12
• /
• pp.1913-1927
• /
• 2017

Encryption technology is to hide information in a cyberspace built using a computer and to prevent third parties from changing it. If a malicious user accesses unauthorized device or application services on the Internet of objects, it may be exposed to various security threats such as data leakage, denial of service, and privacy violation. One way to deal with these security threats is to encrypt and deliver the data generated by a user. Encrypting data must be referred to a technique of changing data using a complicated algorithm so that no one else knows the content except for those with special knowledge. As computers process computations that can be done at a very high speed, current cryptographic techniques are vulnerable to future computer performance improvements. We designed and implemented a new encryption program that combines ancient and modern cryptography so that the user never knows about data management, and transmission. The significance of this paper is that it is the safest method to combine various kinds of encryption methods to secure the weaknesses of the used cryptographic algorithms.

• Journal of Korea Multimedia Society
• /
• v.17 no.7
• /
• pp.778-786
• /
• 2014

Buyer-seller watermarking protocol is one of the copyright protection techniques which combine a cryptographic protocol used in electronic commerce with a digital wetermarking scheme aiming at proving the ownership of multimedia contents and preventing the illegal reproduction and redistribution of digital contents. In this paper, it is proposed a new watermarking scheme in an encrypted domain in an image that is based on the block-DCT framework. In order to implement watermarking scheme in a public-key cryptosystem, it is divided that frequency coefficients exist as real number into integer and decimal layer. And the decimal layer is modified integer type through integral-processing. Also, for robustness and invisibility required in watermarking scheme, it is designed a direction-adaptive watermarking scheme based on locally edge-properties of each block in an image through analyzing distribution property of the frequency coefficients in a block using JND threshold.

• Convergence Security Journal
• /
• v.19 no.3
• /
• pp.37-41
• /
• 2019

Recently, due to the appearance of various types of malware, the existing static analysis exposes many limitations. Static analysis means analyzing the structure of a code or program with source code or object code without actually executing the (malicious) code. On the other hand, dynamic analysis in the field of information security generally refers to a form that directly executes and analyzes (malware) code, and compares and examines and analyzes the state before and after execution of (malware) code to grasp the execution flow of the program. However, dynamic analysis required analyzing huge amounts of data and logs, and it was difficult to actually store all execution flows. In this paper, we propose and implement a preprocessor architecture of a system that performs malware detection and real-time multi-dynamic analysis based on 2nd generation PT in Windows environment (Windows 10 R5 and above).

• The Transactions of the Korean Institute of Electrical Engineers
• /
• v.39 no.3
• /
• pp.240-246
• /
• 1990

The security control can be defined as all control actions and counter-measures to return the operating state of the system to a normal state. In an emergency state, fault clearing and/or overload suppression is enabled as a security control in order to prevent the extension of the fault. In the alert state, counter-measures should be set up in advance for the dangerous points of the system operation in drder to protect the system from expected accidents. In the normal state, the routine scenario is conducted to analyze system state. In the decision-making of the classification of system states, the heuristic and experienced knowledge can be well applied and thus application of expert system to this area attains considerable achievements. In this study, it is attempted to extract empirical rules through heuristic analysis and establish the knowledge base. Finally, the incorporation method with the conventional program packages in proposed. The expert system is designed to select an appropriate method and to perform the corresponding package. The input data can be automatically set up by using the data base. The computation results can be automatically added to the data base.