• Journal of the Korea Institute of Information Security & Cryptology
• /
• 제27권1호
• /
• pp.79-90
• /
• 2017

If digital forensic investigators can utilize file access logs when they audit insider information leakage cases or incident cases, it would be helpful to understand user's behaviors more clearly. There are many known artifacts related to file access in MS Windows. But each of the artifacts often lacks critical information, and they are usually not preserved for enough time. So it is hard to track down what has happened in a real case. In this thesis, I suggest a method to utilize SACL(System Access Control List) which is one of the audit functions provided by MS Windows. By applying this method of strengthening the Windows's audit settings, even small organizations that cannot adopt security solutions can build better environment for conducting digital forensic when an incident occurs.

• Journal of the Korean Society of Marine Environment & Safety
• /
• 제21권1호
• /
• pp.18-24
• /
• 2015

To improve and modify the problems in Maritime Traffic Safety Audit(MTSA) Scheme, "Maritime Safety Research Center(MSRC)" in Korea Ship Safety and Technology Authority(KST) was designated as specialized institute for MTSA through general revision of "Enforcement of MTSA"(March 2012). However, the roles of the MSRC such as preliminary review of safety audit report, comments on target project and etc. had not been defined clearly on the related maritime safety laws compared with other specialized institutes in other similar audit scheme. In this research, the improvement strategies were proposed for development of specialized institute through SWOT analysis, gathering the opinion from related professions and also comparison with the roles and current status of operation in other similar specialized institutes. In conclusion, the 'Screen & scoping system', 'Consultant system' were proposed for efficient operation of the MTSA Scheme, and the systematic and operational improvements such as a revision of maritime safety lan and etc. were also suggested for integrated management about costal development works, development of specialized institute.

• Asian Journal of Business Environment
• /
• 제7권3호
• /
• pp.5-15
• /
• 2017

Purpose - The objective of the present study is to examine the relationship between intellectual preferences of individuals and the level of readiness for change according to Ned Herman. Research design, data and methodology - For this, Iranian Supreme Audit Court was selected as a case study in this research and it was carried out to evaluate research variables and test hypotheses using standard questionnaires of intellectual preferences and readiness for change based on the methodology. It should be remarked that only 32 managers of Audit Court were willing to participate in this research and responded to the questionnaires. Results - The outputs of the performed tests showed that although there is not a significant relationship between the individuals with intellectual preferences for class A and readiness for change them, approaching the intellectual preferences of the individuals to D region increases the readiness for change them. On the other hand, whatever individuals have intellectual preferences for branches in groups B and C, the level of preparedness for change is low. Conclusions - The results of this research have made a clear policy for the effective utilization in human resources based on their intellectual preferences model for management with organizational changes.

• Journal of The Korea Institute of Healthcare Architecture
• /
• 제19권1호
• /
• pp.9-22
• /
• 2013

Purpose: The aging population is the quickly increasing in Korea. Since 2008, the National Long term Care Insurance, a number of long term care facilities have established during short time in Korea. Especially, the environmental assessment tool is important for managing healing environment in a long term care facility for the elderly. Alzheimer's Garden Audit Tool (AGAT) is used to assess whether a garden incorporates those elements and qualities as healing outdoor space. In this paper, we discuss the benefits, limitations, and future directions of the assessment tool for long-term care facilities. Methods : The AGAT audit was done through content analysis by 5 experts from diverse discipline as post occupancy evaluation of a long term care facility located in suburban area. The expert group was asked to describe their comments for modification and improvement in application of AGAT. Results : The results of this study show that it is necessary to refine the instrument's items to better meet the needs of the criteria and items for Korean culture-friendly tool. Especially, greenhouse elements (various plants, birds etc.), multisensory experiences, users-oriented space, programmed activities in garden, and hazards on pathway has somewhat limitation as measurement to assess outdoor of long-term care facilities in Korea. Implications : Consequently, AGAT could be applicable to evaluate the outdoor space of long term care facility in Korea with culturally sensitive revision.

• Journal of Digital Convergence
• /
• 제13권7호
• /
• pp.183-196
• /
• 2015

In order to perform a successful outsourcing, we needs the SLA through improving the quality of IT services. In particular SLA metrics and evaluation criteria is an important factor as to substitute the IT viability of the company to promote IT Outsourcing. SLA metrics consist of technical, managerial, user perspective items, and has been managed to aim to provide reliable and continuous quality improvement of IT services. This study focuses on the HW availability metrics of SLA indicators of IT outsourcing. We propose the Infra availability criteria for the HW configuration level to meet the SLA contract and evaluation. We offer the Infra configuration standards of SLA contract, and propose criteria to determine the suitability of the target levels in IT operations audit environment. The proposed model was verified the necessity and effectiveness of the Infra configuration standards and operation audit check items through the surveys of experts and users.

• KIPS Transactions on Software and Data Engineering
• /
• 제9권11호
• /
• pp.351-356
• /
• 2020

With the spread of COVID-19 infections, the need for next-generation learning management system for undact education is rapidly increasing, and the Ministry of Education is planning future education through the establishment of fourth-generation NEIS. If the fourth-generation NEIS System is well utilized, there are advantages such as providing personalized education services and activating the use of educational data, but a solution to the illegal access problem in an access control environment where strict authorization is difficult due to various user rights. In this paper, we propose a blockchain-based access control audit system for next-generation learning management. Sensitive personal information is encrypted and stored using the proposed system, and when the auditor performs an audit later, a secret key for decryption is issued to ensure auditing. In addition, in order to prevent modification and deletion of stored log information, log information was stored in the blockchain to ensure stability. In this paper, a hierarchical ID-based encryption and a private blockchain are used so that higher-level institutions such as the Ministry of Education can hierarchically manage the access rights of each institution.

• Journal of Information Processing Systems
• /
• 제6권2호
• /
• pp.253-260
• /
• 2010

Communication devices aim to provide a multimedia service without spatial or temporal limitations in an IP-based environment. However, it is incapable of allowing for fair use by consumers who legally buy content, and damages provider contents through the indiscriminate distribution and use of illegal contents. The DRM system that emerged to solve this problem cannot protect licenses stored on communication devices, and manage licenses by redistribution. This paper proposes a license audit model, which checks for illegal access, modification and redistribution, and reports alert logs to the server.

• Asian Journal of Business Environment
• /
• 제6권1호
• /
• pp.5-12
• /
• 2016

Purpose - The purpose of this study is to investigate the effect of corporate governance practices such as (board size, board composition, CEO duality and audit committee) on the performance of selected Pakistani firms. Research design, data, and methodology - This study examines corporate governance structure by using the data of 80 non-financial firms listed on Karachi Stock Exchange Pakistan during 2010-2014. Hypotheses of the study were tested by using both descriptive and inferential statistics. Result - The findings indicate that board size and audit committee is positively related to the firm performance (ROA & ROE). In contrast, board composition and CEO duality are negatively related to the firm performance (ROA & ROE). As far as controlling variables is concerned, leverage is negative, whereas firm size is positively related to all measures of performance. Conclusions - Empirical findings concluded that corporate governance practices affect the firm performance. Therefore, it is suggested that managers should understand the governance mechanisms to work more efficiently in the firm.

• Proceedings of KOSOMES biannual meeting
• /
• 해양환경안전학회 2004년도 추계학술발표회
• /
• pp.13-16
• /
• 2004

2001년 9월 11일 미국에 대한 항공기 데러 이후 해상화물운송선박 및 항만시설에 대한 해상 테레에 대비하고자 IMO에서 "국제선박 및 항만시설보안 코드(ISPS Code)"를 제정 및 채택하여 2004년1월 1일부터 발효 중이다. 이와 관련하여 선박에서 이를 적용하기 위하여 해운선사에서는 많은 노력을 경주하였으며 보안시스템을 효과적으로 운영하는가에 대한 검증은 선박보안심사를 통하여 이루어지고 있다. 또한 보안시스템을 운영하고자 할 경우에는 회사보안책임자, 선박보안책임자 및 해상종사자에 대한 효과적인 사전교육이 반드시 필요한 실정이다. 따라서 향후 선박보안심사는 ISM 심사와의 차이를 고려하여 시스템의 이해 및 운영, 보안설비 정비, 보안사건 발생시 비상대응 및 시스템활동기록의 검증에 집중하여야 하며 ISM 심사와의 통합형태가 되어야 할 것이다. 또한 선박보안교육의 경우에는 교육기관을 통한 보안교육에만 의존할 것이 아니라 승선 전 및 승선 후 교육을 통하여 보안의식을 고양시키어야 한다.

• Proceedings of the Technology Innovation Conference
• /
• 기술경영경제학회 2005년도 제26회 동계학술발표회 논문집
• /
• pp.85-105
• /
• 2005

Government-sponsored Research Institutes (GRIs) have made a great contribution to the development of Korea Science and Technology(S&T). Because of appearing emerging technology, accelerating technological innovation, and increasing research capabilities of other research organizations (universities and firms), however, many problems have been presenting in a GRIs's function and role. With this change in S&T environment, the need for strategic management of GRls has been increased. In these days, firms have been using a strategic management audit for their strategic management. Therefore, in this paper, we will suggest strategic management audit, which could be applied to Korean GRIs