• 스마트미디어저널
• /
• 제11권6호
• /
• pp.51-63
• /
• 2022

Metaverse provides a simulated environment where a large number of users can participate in various activities. In order for Metaverse to be sustainable, it is necessary to study ethics that can be applied to a Metaverse service platform. In this paper, Metaverse ethics and the rules for applying to the platform are explored. And, in order to judge the ethicality of avatar actions in social Metaverse, the identity, interaction, and relationship of an avatar are investigated. Then, an action-based audit approach to avatar interactions (e.g., dialogues, gestures, facial expressions) is introduced in two cases that an avatar enters a digital world and that an avatar requests the auditing to subjects, e.g., avatars controlled by human users, artificial intelligence (AI) avatars (e.g., as conversational bots), and virtual objects. Pseudocodes for performing the two cases in a system are presented and they are examined based on the description of the avatars' actions.

• 한국IT서비스학회지
• /
• 제11권4호
• /
• pp.107-121
• /
• 2012

The core infra-technology in the ubiquitous era, RFID which has taken action from the public institution with the pilot projects as well as the practical projects is gradually extending its spectrum to the private enterprises. Along with its expansion, the audit required on the RFID-based information system is also growing in the industry. Especially, since RFID-based information systems, especially compared to other information systems, are likely to be exposed to many threats, the security audit for them is being emphasized. This paper suggests security audit checking items for the RFID-based information system, which can be used to perform the efficient security audit. The security audit checking items consist of eight basic checking items, each of which consists of detailed review items and can be applied for each building steps of the system(analysis, design, implementation, testing, and development). Finally, this paper confirmed the efficiency of the security audit checking items proposed in this paper through survey by the experienced auditors and analysis of practical audit cases.

• 한국산학기술학회논문지
• /
• 제16권2호
• /
• pp.1403-1413
• /
• 2015

정보시스템 감리는 정보시스템의 구축과 운영에 관한 제반 사항을 종합적으로 점검하여 문제점을 파악하고 해결방안을 제시함으로써, 정보시스템의 품질 향상과 프로젝트 성과 제고에 기여해야 한다. 그러나 현실은 감리가 지나치게 주관적인 의견에 치우치고 있다. 이 연구는 정보기술수용 모형(TAM)을 감리분야에 적용하여 감리자동화 기술에 대한 유용성과 사용 용이성에 대한 인식수준을 측정하고, 이를 토대로 감리기술(도구)에 대해 이해당사자의 인식과 활용의 관계를 분석하는 것을 주요 내용으로 한다. 가설검증 결과 감리분야에서도 정보기술에 대한 사용자의 인식수준과 활용정도에 정(+)의 상관관계가 있는 것을 확인하였다. 이 연구는 감리 분야에도 TAM을 적용하여 기술의 활용 현상을 설명하고 예측할 수 있고, 실증적 연구를 통해 감리인, 발주자 및 사업자가 인식하는 수준은 감리계획 단계와 시정조치확인 단계는 유사하게 나타난 반면, 감리수행활동 단계와 감리결과검토 단계는 서로 차이를 보이고 있으며, 유용성 및 사용의도와 활용에서 선호하는 감리기술을 확인할 수 있었다.

• 디지털융복합연구
• /
• 제10권5호
• /
• pp.251-266
• /
• 2012

위치정보란 특정한 물건이나 개인이 특정한 시점에 존재하거나 존재하였던 장소에 관한 정보이다. 스마트폰이 대중화되면서 위치정보는 단순히 장소에 관한 정보를 넘어서 개인의 위치정보를 이용한 서비스가 대세를 이루고 있다. 그러나, 개인정보의 유출로 야기되는 문제는 금전적 경제적 손실을 넘어서 개인의 이동경로 혹은 개인의 위치를 직접적으로 확인할 수 있는 정보이기 때문에 개인의 신상에 영향을 미칠 수도 있다. 개인위치정보의 관리를 위한 위치기반 서비스들을 통제할 수 있는 가이드 등이 부족한 현실이다. 따라서 본 논문에서는 개인의 위치정보 침해 및 유 노출을 사전에 통제하기 위해 정보시스템 분석 설계 운영 단계에서 개인위치정보에 감리를 수행할 때, 사법처리기준, 재무손실등급, 개인위치정보 중요도, 점검항목의 중요도가 포함된 점검항목을 제안하였으며, 전문가들의 설문 조사를 통하여 제안한 점검항목에 대한 적합성을 검증하였다.

• 품질경영학회지
• /
• 제11권2호
• /
• pp.25-31
• /
• 1983

Often arrangement for effective product assessment and audit have not been completely satisfactory. The underlying reasons are: (a) The lack of early evidence of new unit quality. (b) The collection and processing of data. (c) Ineffective data analysis techniques. (d) The variability of information on which decision making is based. Because of the nature of the product the essential outputs from an affective QA organization would be: (a) Confirmation of new unit quality. (b) Detection of failures which are either epidemic or slowly degradatory. (c) Identification of failure cases. (d) Provision of management information at the right time to effect the necessary corrective action. The heart of an effective QA scheme is the acquisition and processing of data. With the advent of data processing for quality monitoring becomes feasible in an automotive testing environment. This paper shows how the method enables us to use Automotive Testing data for the cost benefits of QA management.

• Journal of Information Processing Systems
• /
• 제17권4호
• /
• pp.772-786
• /
• 2021

The process of tracking suspicious behavior manually on a system and gathering evidence are labor-intensive, variable, and experience-dependent. The system logs are the most important sources for evidences in this process. However, in the Microsoft Windows operating system, the action events are irregular and the log structure is difficult to audit. In this paper, we propose a model that overcomes these problems and efficiently analyzes Microsoft Windows logs. The proposed model extracts lists of both common and key events from the Microsoft Windows logs to determine detailed actions. In addition, we show an approach based on the proposed model applied to track illegal file access. The proposed approach employs three-step tracking templates using Elastic Stack as well as key-event, common-event lists and identify event lists, which enables visualization of the data for analysis. Using the three-step model, analysts can adjust the depth of their analysis.

• 통상정보연구
• /
• 제11권4호
• /
• pp.289-312
• /
• 2009

Under the circumstance of increasing international trade volumes and limitation of customs human resources, it is necessary to shift the customs' revenue collection activities and audit method from a transaction-based approach to an account-based approach. Thus, in 1997, U.S. Customs services established the Account Management Program. The Account Management Program is designed to increase importer compliance and improve customer service through one-on-one interaction with business entities and a designated Customs representative(Account Manager). The Account Management Program is a comprehensive process that includes the following stages and activities ; selection of a potential Account, establishment of the Account, management of the Account. In 2009, Korea Customs service introduced and executed the Account Management Program. But owing to its early stages, Korea Customs service does not suggest effective direction of development of the AM program. So I can propose the following improvements of the Account Management Program in Korea. Firstly, the Account Managers have to be assigned more traders than AEOs(Authorized Economic Operators). Secondly, it is necessary that Customs service appoints part-time port Account Managers to help more traders to improve customs compliance. Thirdly, thought should be given as to Account can be expanded to encompass both small and medium enterprises(SME) by providing customs brokers managing their customs business on the behalf of the SME with the Account Managers. Lastly, Customs service has to establish performance measures and action plan for the Account Management Program.

• 산업경영시스템학회지
• /
• 제24권68호
• /
• pp.85-94
• /
• 2001

Most of customers want to know how to develop the computer system they want to get to use according to the their requirements. This study presents a Computer Integration management System for Quality (CISQ) model for system-integration organizations, which need to demonstrate their capability to consistently provide computer integrated system that meets customer satisfaction and applicable regulatory requirements. The Plan.Do.Check.Act(PDCA) cycle called by Doming wheel expresses the basic concept of continuous improvement action in order to emphasize on achieving business goal. It is useful for providing full competence of a system-integration organization to integrate management systems based on the international management system, and to take an advantage in its market. This study specifies International Certification Network Business Excellence Concept(IBEC) approach to ensure a harmonized integration of the variety of management systems and thereby produce synergy effect. The end part of this study specifies a Assessment Model including an assessment concept adding to the compliance audit according to the CISQ for the continuous improvement. A simple application on Failure Modes and Effects Analysis(FMEA) in testing phase in project life cycle has been done.

• 한국산업보건학회지
• /
• 제29권3호
• /
• pp.298-309
• /
• 2019

Objectives: This study aimed to investigate stages of safety and health culture change through a reflection on 40 years of hearing conservation history at a multinational company. Methods: The target workplaces were multinational companies with more than 1,000 employees. The research used the clinical case study and system analysis methods based on direct observation of the research from 1994 to 2009. The latter method performed an analysis of the equilibrium state of the cross-section in the given period and the longitudinal profile of the change during the given period. Results: The stages of cultural change are divided into five stages and summarized as follows. In the first stage, workplace noise was not widely recognized as a hazard, while in the second stage, the measurement of noise levels and audiometric testing were conducted under the Korean Occupational Safety and Health Act (KOSHA). The driving force for change in the second stage was the amendment of the KOSHA. In the third stage, noise came to be recognized as a hazard factor through awareness training. The driving force of change during the third stage was the strong executive power exerted by the audit of the industrial hygiene program from the US head office. In the fourth step, there was a change to actually reduce noise. The driving force in this stage was a change in company executives' risk perception resulting from lawsuits over noise-induced hearing loss and the task force team activities for culture change based on the action learning protocol. At the fifth stage, a 'buy quiet policy' was institutionalized. The management's experience that noise reduction was difficult was the motivation to manage noise from the time of purchase of equipment. Conclusions: The activities of a hearing conservation program are determined by the improvement of the legal system and by the way it is enforced. Noise control activities to reduce noise areas may be possible through the shared risk perception of noise-induced hearing loss and by a change agent role as a facilitator to implement noise control.