• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.18 no.3
• /
• pp.761-769
• /
• 2014

We propose an improved M-ISMS(Military-ISMS) model which is based on common ISMS model for regarding military's unique characteristics. Our model focuses on 'Internal Security Audit' and 'Management of external activity' as military circumstances. So, we added the six control new items as internal security audits. Because the confidentiality is more important than availability in military service as compared with private sectors. In addition, we propose some control suggestions for establishing security management standards and keeping level maintenance when it will becomes to lose a value as confidential. The M-ISMS model in this paper has effectiveness which prevents security incidents in advance rapidly throughout a variety of common ISMS's advantages and security incidents of private sectors in consideration of military characteristics.

• The Journal of Korea Institute of Information, Electronics, and Communication Technology
• /
• v.3 no.4
• /
• pp.35-42
• /
• 2010

This paper reviews the current studies about the current secure OS, security module and SELinux, and suggests Linux access control module that uses the user discriminating authentication, security authority inheritance of subjects and objects, reference monitor and MAC class process and real-time audit trailing using DB. First, during the user authentication process, it distinguishes the access permission IP and separates the superuser(root)'s authority from that of the security manager by making the users input the security level and the protection category. Second, when the subjects have access to the objects through security authority inheritance of subjects and objects, the suggested system carries out the access control by comparing the security information of the subjects with that of the objects. Third, this system implements a Reference Monitor audit on every current events happening in the kernel. As it decides the access permission after checking the current MAC security attributes, it can block any malicious intrusion in advance. Fourth, through the real-time audit trailing system, it detects all activities in the operating system, records them in the database and offers the security manager with the related security audit data in real-time.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.26 no.5
• /
• pp.1105-1119
• /
• 2016

Android includes SEAndroid as a core security feature. SELinux is applied to Android OS as a SEAndroid, because there exists structural differences between Linux and Android. Since the security of SEAndroid depends on the reliable policy if the policy is tampered by the attacker, the serious security problems can be occurred. So we must protect policies which are the most important thing in SEAndoroid. In this paper, we analyze the process of SEAndroid policy updating to find out vulnerabilities and study the attack points on policy tampering. And we propose the SPPA to detect whether the policy is modified by an attacker. Moreover, we prove the performance and the effect of our proposed method on mobile device.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.18 no.1
• /
• pp.59-65
• /
• 2008

In security layer in the CDMA2000 1x EV-DO, a standard - C.S0024-a v2.0 is being accomplished under the project of 3GPP2(3rd Generation Partnership Project2). Therefore, a security device is needed to implement the security layer which is defined on the standard document for data transfer security between AT(Access Terminal) and AN(Access Network) on CDMA2000 1x EV-DO environment. This paper realizes the security layer system that can make safe and fast transfer of data between AT and AN. It could be applied to various platform environments by designing and implementing the Security Layer in the CDMA2000 1x EV-DO Security Layer to which applies C.S0024-A v2.0 of 3GPP2.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.20 no.6
• /
• pp.33-42
• /
• 2010

With the emergence of increasingly complex networks and diverse user terminals, demand for the next generation IPTV service is rapidly growing. It enables any content to seamlessly be reused on the diverse terminals as well as be broadcasted in real-time through the complex networks. In this paper, a novel security framework is proposed for the real-time and reusable IPTV services. The proposed framework is advantageous over the conventional content protection techniques in easily producing the scalable content with lightweight, perceptual, transcodable, and adjustable security features. It does not only ensure end-to-end security over the entire service range based on a single security mechanism, but also can control a level of security while dynamically transcoding the original content. This approach basically performs selective encryption during and after the compression using scalable video coding. The suitability of the proposed approach is demonstrated through experiments with a practical service scenario. Therefore, it is expected that security technology alone could practically contribute to creating new business opportunities for IPTV services.

• Journal of Korea Trade
• /
• v.27 no.3
• /
• pp.65-86
• /
• 2023

Purpose - As globalization progresses, complexity also increases, and various factors that threaten port functions are emerging. Accordingly, the demand for port security to prevent the crisis and resilience that quickly recovers its original function after the crisis is also increasing in port operations. However, few studies have examined how to ensure the port security and how the resilience affects operation performance of port and sustainability performance as well. So the study aims to find out how port security affects port resilience and port operational performance, and consequently, this two factors affect socioeconomic and environmental sustainability performance respectively and synthetically. Design/methodology - Confirmatory Factor Analysis (CFA) was first performed to determine the validity of the factors of model and hypothesis test was performed using Structural Equation Model (SEM) to analyze the Port Performance Model, which show the perception logic among port security level, port resilience, operation performance, and sustainability performance. In order to empirically analyze this model, total 264 respondents from port security operators, shipping companies in South Korea were surveyed. Findings - As result of SEM, First, port security level positively affected the resilience (H1) and cargo operational performance (H2) but not in both of the sustainability performances (H3, H4). Second, resilience positively affected only cargo operational performance (H5) and socio-economic sustainability performance (H7). Last, cargo operation performance positively affects the both of sustainability performances (H8, H9). Originality/value - It was confirmed that port security could improve cargo operational performance through ensuring port resilience and eventually increase the socio-economic sustainability. Therefore the study implies that careful integration and management of port security, port resilience, and sustainability are required, along with compromise on sustainable development goals in the social, economic, and environmental area among all stakeholders.

• Journal of National Security and Military Science
• /
• s.1
• /
• pp.345-360
• /
• 2003

To build an information oriented armed forces, the Korean military telecommunication networks adopt TCP/IP standard communication infrastructures based on ATM packet switched networks. Utilizing this network infrastructure, the Korean armed forces also applies to the areas of battleship management for efficient operation command controls and resource management for efficient resource allocations. In this military communication networks, it is essential to determine the least cost network topology under equal performance and reliability constraints. Basically, this type of communication network design problem is known in the literature as an NP Hard problem. As the number of network node increases, it is very hard to obtain an optimal solution in polynomial time. Therefore, it is reasonable to use a heuristic algorithm which provides a good solution with minimal computational efforts. In this study, we developed a simulated annealing based heuristic algorithm which can be utilized for the design of military communication networks. The developed algorithm provides a good packet switched network topology which satisfies a given set of performance and reliability constraints with reasonable computation times.

• Proceedings of the Korean Institute of Interior Design Conference
• /
• 2004.05a
• /
• pp.167-170
• /
• 2004

This study proposes the method seeking out the user needs for the home automation systems which are one of the compositions of digital home. The findings are as follows. (1) The designing of digital home should be based on the residents' daily life and the their needs for the future house prior to the digital technology, (2) The IT Apartments recently developed in Busan set up the safety and security system and the automatic ventilation system mostly. (3) The residents are more concerned of the safety and security and the comfortable interior environment than convenience and entertainments. (4) The residents have diverse needs for the home automation systems according to their age, residential experience and occupation.

• International Journal of Computer Science & Network Security
• /
• v.21 no.8
• /
• pp.212-218
• /
• 2021

The Proportional Integral Derivative (PID) controller is the most popular industrial controller and more than 90% process industries use this controller. During the past 50 years, numerous good tuning methods have been proposed for Single Input Single Output Systems. However, design of PI/PID controllers for multivariable processes is a challenge for the researchers. A comparative study of three PID controllers design methods has been carried-out. These methods include the DS (Direct Synthesis) method, IMC (Internal model Control) method and ETF (Effective Transfer Function) method. MIMO PID controllers are designed for a number of 2×2, 3×3 and 4×4 process models with multiple delays. The performance of the three methods has been evaluated through simulation studies in Matlab/Simulink environment. After extensive simulation studies, it is found that the Effective Transfer Function (ETF) Method produces better output responses among two methods. In this work, only decentralized methods of PID controllers have been studied and investigated.

• Journal of National Security and Military Science
• /
• s.15
• /
• pp.87-116
• /
• 2018

This study is a study on applying the teaching-learning theory of education to military school education. For the purpose, the theories of constructivist, cognitive, and behavioral theories of teaching-learning theory are reviewed and applied to military school education. The application of teaching-learning theory to military school education suggested the application of constructivist, cognitive, and behavioral education methods to each core curriculum and OBC curriculum. In addition, Gagne's 9th instructional design model of teaching and learning theory was applied in school education design. Applying the teaching-learning theory of education to military, discussion of situation education is constructivist education method, L&T education is cognitive education method, mastery education is behavioral education method, teaching principle, applicable education method. Based on the teaching-learning theory presented in this study, it is expected that the design of military school education and the application of education method will achieve the goal of more effective military school education.