• Proceedings of the Korea Information Processing Society Conference
• /
• 2015.10a
• /
• pp.794-796
• /
• 2015

본 연구는 소프트웨어의 소스코드를 대상으로 보안 취약성을 자동으로 평가할 수 있는 방안을 연구하여 소프트웨어 취약점 관리의 자동화 기술 아키텍처를 제안한다. IT가 생활환경의 기반기술로 보급화 되며 소프트웨어시장이 가파르게 성장하고 있다. 영리 소프트웨어의 경우 개발기관에서 관리 및 지원을 하지만, 오픈소스 소프트웨어는 비영리 목적과 개발환경으로 인해 체계적으로 관리되기가 어려워 취약점이 발생하기 쉽다. 그럼에도 비용과 효율의 문제로 오픈소스가 광범위하게 활용되고 있어, 오픈 소스 소프트웨어를 도입한 기관 및 단체에 침해를 유발하고, 보안수준을 악화시키고 있다. 이에 오픈 소스 소프트웨어는 소스코드가 공개되는 소프트웨어라는 점을 활용하여 소스코드 수준에서의 취약점 관리 자동화를 지원함으로써, 오픈소스 소프트웨어를 활용하는 분야의 보안 환경을 안전하게 향상시킬 수 있다.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2015.10a
• /
• pp.824-826
• /
• 2015

최근 IT 산업의 발달로 다양한 분야에서 소프트웨어 활용이 증가하였으며, 이에 따라 공개 오픈소스 소프트웨어의 사용빈도가 증가하고, 다양한 범위에서 활용되고 있다. 하지만, 공개 오픈소스의 이용이 증가함에 따라, 공개 오픈소스 취약점에 기반한 다양한 문제에 노출될 수 있으며, 실제 'OpenSSL'의 하트블리드 취약점은 전세계적으로 많은 피해를 야기시켰다. 따라서, 기존 오픈 소스 취약점 분석 환경에서 기호 기반의 취약점 분석 방법을 이용하여 오탐 및 미탐을 최소화 하고, 정확한 보안약점 탐지 가능 기법을 제안한다.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2013.05a
• /
• pp.568-571
• /
• 2013

스마트 폰의 보급량이 증가함에 따라 모바일 악성코드의 위협도 높아졌다. 여러 스마트 폰 플랫폼 중 안드로이드 플랫폼은 높은 점유율과 개방형 플랫폼이라는 특성상 다른 플랫폼에 비해 악의적인 공격에 취약하다. 안드로이드 앱이 스마트 폰에 설치, 실행되기 위해서는 개발자의 서명이 요구된다. 안드로이드 서명체계는 다중 서명을 허용하는데, 다중서명 체계상 악용될 수 있는 취약점이 존재한다. 본 연구에서는 안드로이드 코드서명의 취약점을 이용하여 악성코드를 실행시키고 다른 앱을 감염시키는 악성 앱을 개발하여 취약점의 악용 가능성에 대해 연구하였다.

• KIISE Transactions on Computing Practices
• /
• v.21 no.3
• /
• pp.257-262
• /
• 2015

As software grows more complex, it contains more bugs that are not recognized by developers. Attackers can then use exploitable bugs to penetrate systems or spread malicious code. As a representative method, attackers manipulated documents or multimedia files in order to make the software engage in unanticipated behavior. Recently, this method has gained frequent use in A.P.T. In this paper, an automatic analysis method to find software security bugs was proposed. This approach aimed at finding security bugs in the software which can arise from input data such as documents or multimedia. Through dynamic taint analysis, how input data propagation to vulnerable code occurred was tracked, and relevant instructions in relation to input data were found. Next, the relevant instructions were translated to a formula and vulnerable input data were found via the formula using an SMT solver. Using this approach, 6 vulnerable codes were found, and data were input to crash applications such as HWP and Gomplayer.

• Journal of Digital Convergence
• /
• v.13 no.3
• /
• pp.201-208
• /
• 2015

Recently computer, smart phone, medical devices, etc has become used in a variety of environments as the application fields of IT products have become diversification. Attack case of abuse of software security vulnerabilities is on the increase as the application fields of software have become diversification. Accordingly, secure coding program is of a varied but history management, updating, API module to be vulnerable to attack. Thus, this paper proposed a materialization of CMS linked system to enable check the vulnerability of the source code to content unit for secure software development, configuration management system that interwork on the transmission module. Implemented an efficient coding system secure way that departmentalized by the function of the program and by analyzing and applying secure coding standards.

• Computers and Concrete
• /
• v.26 no.3
• /
• pp.203-211
• /
• 2020

Turkey is located in one of the most seismically active regions of in Europe. The majority of the population living in big cities are at high seismic risk due to insufficient structural resistance of the existing buildings. Such a seismic risk brings the need for a comprehensive seismic evaluation based on the risk analysis in Turkey. Determining the seismic resistance level of existing building stock against the earthquakes is the first step to reduce the damages in a possible earthquake. Recently in January 2020, the Elazig earthquake brought the importance of the issue again in the public. However, the excessive amount of building stock, labor, and resource problems made the implementation phase almost impossible and revealed the necessity to carry out alternative studies on this issue. This study aims for a detailed investigation of residential buildings in Antalya, Turkey. The approach proposed here can be considered an improved state of building survey methods previously identified in Turkey's Design Code. Antalya, Turkey's fifth most populous city, with a population over 2.5 Million, was investigated as divided into sub-regions to understand the vulnerability, and a threshold value found for the study area. In this study, 26,610 reinforced concrete buildings between 1 to 7 stories in Antalya were examined by using the rapid visual assessment method. A specific threshold value for the city of Antalya was determined with the second level examination and statistical methods carried out in the determined sub-region. With the micro zonation process, regions below the threshold value are defined as the priority areas that need to be examined in detail. The developed methodology can be easily calibrated for application in other cities and can be used to determine new threshold values for those cities.

• Journal of Navigation and Port Research
• /
• v.41 no.3
• /
• pp.165-172
• /
• 2017

Current scenarios for marine spill accidents were developed based on probable maximum spill accidents. However,, accidents of similar scale to maximum spill accidents are virtually non-existent, and training or deployment of response equipment based on these scenarios can be cost prohibitive. Current scenarios require realism for practical use and need to be designed for purpose of use. In this study we developed scenarios that may replace current scenarios by using the HNS accident standard codes based on past accident cases. Scenarios were developed by modularizing the HNS accident standard code, that is classified into three scenarios: Maximum Frequency Scenario, Maximum Damage Scenario, and Maximum Vulnerability Scenario. The situation of an accident presented in each scenario developed in this process is much like a real accident, and therefore, it is has practical application.

• Journal of Digital Convergence
• /
• v.13 no.2
• /
• pp.177-183
• /
• 2015

Cross Site Scripting enables hackers to steal other user's information (such as cookie, session etc.) or to do abnormal functions automatically using vulnerability of web application. This attack patterns of Cross Site Scripting(XSS) can be divided into two types. One is Reflect XSS which can be executed in one request for HTTP and its reply, and the other is Stored XSS which attacks those many victim users whoever access to the page which accepted the payload transmitted. To correspond to these XSS attacks, some measures have been suggested. They are data validation for user input, output validation during HTML encoding procedures, and removal of possible risk injection point to prevent from trying to insert malicious code into web application. In this paper, the methods and procedures for these two types are explained and a penetration testing is done. With these suggestions, the attack by XSS could be understood and prepared by its countermeasures.

• The Journal of the Korea Contents Association
• /
• v.10 no.1
• /
• pp.46-58
• /
• 2010

The user valence of VoIP services with SIP protocol is increasing rapidly because of cheap communication cost and its conveniency. But attacker can easily modify the packet contents of SIP protocol as SIP header is transmitted by using UDP methods in text form. The reason is that SIP protocols does not provide an authentication function on the transmission session. Therefore, existing SIP protocol is very weak on SIP Packet Flooding attack etc. In order to solve like this kinds of SIP vulnerabilities, we used SIP status codes under the monitoring module for detecting SIP Flooding attacks and additionally proposed an advanced protocol where the authentication and security function is strengthened about SIP packet. We managed SIP session spontaneously in order to strengthen security with SIP authentication function and to solve the vulnerability of SIP protocol. The proposed mechanism can securely send SIP packet to solves the security vulnerability with minimum traffic transmission. Also service delay in SIP proxy servers will be minimized to solve the overload problem on SIP proxy server.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.15 no.6
• /
• pp.13-25
• /
• 2005

In these days, there are various uses of Linux such as small embedded systems, routers, and huge servers, because Linux gives several advantages to system developers by allowing to use the open source code of the Linux kernel. On the other hand, the open source nature of the Linux kernel gives a bad influence on system security. If someone wants to exploit Linux-based systems, the attacker can easily do it by finding vulnerabilities of their Linux kernel sources. There are many kinds of existing methods for lading source-level vulnerabilities of softwares, but they are not suitable for finding source-level vulnerabilities of the Linux kernel which has an enormous amount of source code. In this paper, we propose the Onion mechanism as a methodology of finding source-level vulnerabilities of Linux kernel variables. The Onion mechanism is made up of two steps. The Int step is to select variables that may be vulnerable by using pattern matching mechanism and the second step is to inspect vulnerability of each selected variable by constructing and analyzing the system call trees. We also evaluate our proposed methodology by applying it to two well-known source-level vulnerabilities.