• 한국산학기술학회논문지
• /
• 제16권10호
• /
• pp.7211-7218
• /
• 2015

악성코드는 하루 평균 수만 건 이상이 발생하고 있으며, 신종 악성코드의 수는 해마다 큰 폭으로 증가하고 있다. 악성코드를 탐지하는 방법은 시그니쳐 기반, API 흐름, 문자열 등을 이용한 다양한 기법이 존재하지만 대부분의 탐지 기법들은 악성코드를 우회하는 공격 기법으로 인해 신종 악성코드를 탐지하는데 한계가 있다. 따라서 신종 악성코드를 효율적으로 탐지하기 위한 연구가 많이 진행되고 있다. 그중 시각화 기법을 통한 연구가 최근 활발하게 이루어지고 있으며, 악성코드를 직관적으로 파악할 수 있으므로 대량의 악성코드를 효율적으로 탐지하고 분석할 수 있다는 장점이 있다. 본 논문에서는 악성코드와 정상파일에서 Native API 함수를 추출하고 해당 Native API가 악성코드에서 발생하는 확률에 따라서 F-measure 실험을 통해 가중치의 합을 결정하고, 최종적으로 가중치를 이용하여 워드 클라우드에서 텍스트의 크기로 표현되는 기법을 제안한다. 그리고 실험을 통해 악성코드와 정상파일에서 사용하는 Native API의 가중치에 따라서 악성코드를 판단할 수 있음을 보인다. 제안하는 방식은 워드 클라우드를 이용하여 Native API를 시각적으로 표현함으로써 파일의 악성 유무를 판단하고, 직관적으로 악성코드의 행위를 분석할 수 있다는 장점이 있다.

• 한국정보과학회논문지:시스템및이론
• /
• 제30권12호
• /
• pp.714-723
• /
• 2003

새로운 방법의 시스템 공격에 대해서도 시스템의 생존성을 보장하기 위해서는 필수 서비스를 위한 중요 자원을 식별하고 위급 상황에 적절히 대응하는 방안이 필요하다. 본 논문에서는 침입 감내 시스템 구축을 위한 핵심 기술의 하나인 동적 자원 재할당 기법을 제시한다. 이 기법에서는 선택된 필수 서비스에 대해 해당 노드 내에서 자원을 재할당하여 침입이 발생한 후에도 필수 서비스를 보호하여 생존할 수 있도록 한다. 이러한 노드 내에서의 조치에도 불구하고 필수 서비스의 생존성이 확보되지 않으면 준비된 다른 서버 노드로 서비스 제공이 전환될 수 있도록 하는 노드간의 자원 재할당이 이루어지도록 한다. 테스트베드를 구축하여 실험을 실시한 결과 본 자원 재할당 기법의 타당성을 입증할 수 있었다. 향후 이 기법을 칩입 탐지 시스템과 접목시키면 매우 효과적인 공격 대응 방안이 될 것이다.

• 한국산학기술학회논문지
• /
• 제15권3호
• /
• pp.1299-1304
• /
• 2014

본 논문은 바퀴구동 로봇을 이용한 농업용 자동 호스 릴 장치 개발에 대한 연구이다. 다양한 농작업 중에서 방제는 농작물의 생육과 직결되는 중요한 작업이다. 이에 본 연구에서는 공급 호스에 대한 자동화를 위하여 바퀴 구동 로봇을 이용하여 구동이 가능하고 장력 검출을 통하여 공급 호스가 자동으로 풀리고 감길 수 있는 시스템을 개발하였다. 바퀴 구동 로봇에 대한 조향 성능에 대한 기구학적인 해석을 통하여 협소한 농장에서도 원활한 동작이 가능한 형태를 고안하였으며, 시뮬레이션을 통하여 이를 검증하였다. 자동 호스 공급 장치의 정밀도를 높이기 위하여 호스에 걸리는 장력을 검출하는 방식과 호스의 정렬을 위한 기구를 고안하였다. 개발되어진 시스템에 대한 성능평가와 농장에서의 평가를 실시하였다. 개발되어진 시스템은 최고 주행 속도 2.5m/s, 주행 정밀도 ${\pm}0.18^{\circ}$ 그리고 주행 안전 속도 2m/s를 갖는다. 개발되어진 시스템은 농업 인구의 고령화 및 인력 부족에 도움이 될 것으로 판단되어진다.

• 한국정보처리학회:학술대회논문집
• /
• 한국정보처리학회 2005년도 춘계학술발표대회
• /
• pp.1185-1188
• /
• 2005

비정상 행위에 대한 true/false 방식의 공격 탐지 및 대응방법은 높은 오탐지율(false-positive)을 나타내기 때문에 이를 대체할 새로운 공격 탐지방법과 공격 대응방법이 연구되고 있다. 대표적인 연구로는 트래픽 제어 기술을 이용한 단계적 대응방법으로, 이 기술은 비정상 트래픽에 대해 단계적으로 대응함으로써 공격의 오탐지로 인하여 정상 서비스를 이용하는 트래픽이 차단되지 않도록 하는 기술이다. 비정상 트래픽 중 포트스캔 공격은 네트워크 기반 공격을 위해 공격대상 호스트의 서비스 포트를 찾아내는 공격으로 이 공격을 탐지하기 위해서는 일정 시간동안 특정 호스트의 특정 포트에 보내지는 패킷 수를 모니터링 하여 임계치와 비교하는 방식의 true/false 방식의 공격 탐지방법이 주로 사용되었다. 비정상 트래픽 제어 프레임워크(Abnormal Traffic Control Framework)는 true/false 방식의 공격 탐지방법을 이용하여 공격이 탐지되었을 때, 처음에는 트래픽 제어로 대응하고 같은 공격이 재차 탐지되었을때, 차단하여 기존의 true-false 방식의 공격 탐지 및 대응방법이 가지는 높은 오탐지율을 낮춘다. 하지만 포트스캔 공격의 특성상, 공격이 탐지된 후 바로 차단하지 못하였을 경우, 이미 공격자가 원하는 모든 정보를 유출하게 되는 문제가 있다. 본 논문에서는 기존의 True/False 방식의 포트스캔 공격 탐지방법에 퍼지 로직 개념을 추가하여 공격 탐지의 정확성을 높이고 기존의 탐지방법을 이용하였을 때보다 신속한 트래픽 제어 및 차단을 할 수 있는 방법을 제안한다.

• 대한한의학회지
• /
• 제30권4호
• /
• pp.79-92
• /
• 2009

Objectives: The aim of the present study was to explore the neuroprotective effect and the possible mechanism of the PD-1 extracts on 1-methyl-4-phenyl-1,2,3,6-tetrahydrophridine (MPTP)-lesioned C57BL/6 mouse model of Parkinson's disease (PD). Methods: The mice were supplemented (or not) with 50 or 100 mg/kg/day of PD-1 for 2 weeks, after which MPTP was injected intraperitoneally. We observed that daily administration of PD-1 prevented MPTP-induced depletion of striatal DA, and maintained striatal and nigral tyrosine hydroxylase (TH) protein levels. Results: Our results demonstrated that mice treated with PD-1 prior to MPTP administration showed more abundant TH-immunopositive (TH-ir) fibers and neurons than mice given only MPTP, indicating that PD-1 protects dopaminergic striatal fibers and nigral neurons from MPTP insults. Possible neuroprotective effect of PD-1 was further studied by the detection of antiapoptotic protein (bcl-2) and proapoptotic protein (Bax). In this assay, MPTP elevated the Bax protein and decreased the bcl-2 protein, while these expressions were prevented by PD-1 pre-treatment. Conclusions: The present results suggest that PD-1 is able to protect dopaminergic neurons from MPTP-induced neuronal injury with anti-apoptotic activity being one of the possible mechanisms.

• The Korean Journal of Pain
• /
• 제19권2호
• /
• pp.168-174
• /
• 2006

Background: Several biochemical mediators, such as substance P, calcitonin gene-related peptide (CGRP) and prostaglandin $E_2$, have been demonstrated to be involved in herniated or degenerated disc-induced radiculopathy. The authors tested the hypothesis that these mediators would existed in the epidural space of humans. Methods: Thirty nine patients were divided into two groups; 27 patients, who were diagnosed with spinal stenosis (stenosis group), and 12 scheduled for epidural anesthesia, without a history of back pain (control group). Under fluoroscopic guidance, an epidural catheter was introduced through the caudal space and placed into the anterior and posterior spaces, up to and around the epidural adhesive area, in the stenosis group. In the control group, the catheter was placed into the posterior epidural space through the L3⁣-4 or L4⁣-5 intervertebral space. Epidural irrigation was performed with 10 ml of saline, via an epidural catheter. Aspirated lavage fluid was collected, and the concentrations of biochemical mediators (substance P, CGRP and prostaglandin $E_2$) measured using an enzyme immunoassay kit. Results: Substance P, CGRP and prostaglandin $E_2$ were detected in all the epidural lavage fluids from both groups. The concentrations of substance P and prostaglandin $E_2$ in the stenosis group were higher than those of the control (P < 0.05). However, there was no difference in the CGRP levels between the two groups. In the stenosis group, the concentrations of these three mediators in the anterior epidural space were no different to those in the posterior space. Conclusions: These results suggest that biochemical mediators, such as substance P and prostaglandin $E_2$, in the epidural space might be partly involved in pain mechanism associated with spinal stenosis.

• Journal of Microbiology and Biotechnology
• /
• 제22권1호
• /
• pp.25-33
• /
• 2012

The association of verotoxic E. coli and Acinetobacter spp. with various antibiotic-resistant, diarrhogenic, and nosocomial infections has been a cause for concern worldwide. E. coli and A. haemolyticus isolated on a number of selective media were screened for virulence factors, antibiotic resistance, and transformation of resistance genes. Out of 69 E. coli isolates obtained, 25 (35.23%), 14 (20.30%), and 28 (40.58%) were positive for Vtx1&2, Vtx1, and Vtx2, respectively, 49 (71.015%) for extendedspectrum beta-lactamases (ESBLs), 34 (49.28%) for serum resistance, 57 (82.61%) for cell surface hydrophobicity, 48 (69.57%) for gelatinase production, and 37 (53.62%) for hemolysin production. For the 14 A. haemolyticus isolates, only 2 (14.29%) in each case from all the samples investigated were positive for Vtx1, Vtx2 and Vtx1&2 respectively, 8 (57.14%) for ESBLs, 7 (50.00%) for serum resistance, 11 (78.57%) for cell surface hydrophobicity, 4 (28.57%) for gelatinase production, and 8 (57.14%) for hemolysin production. Although transformation occurred among the E. coli and Acinetobacter isolates (transformation frequency: $13.3{\times}10^{-7}-53.4^{-7}$), there was poor curing of the plasmid genes, a confirmation of the presence of stable antibiotic-resistant genes (DNA concentration between 42.7 and 123.8 ${\mu}g$) and intragenetic transfer of multidrug-resistant genes among the isolates. The isolates were potentially virulent and contained potentially transferable antibiotic resistance genes. Detection of virulence factors, antibiotic resistance genes, and transformation among these isolates is a very significant outcome that will influence approaches to proactive preventive and control measures and future investigations. However, continued surveillance for drug resistance among these bacteria and further investigation of the mechanism of action of their virulence factors are a necessity.

• 환경영향평가
• /
• 제22권5호
• /
• pp.439-454
• /
• 2013

UN-REDD (United Nations programme on Reducing Emissions from Deforestation and forest Degradation) is currently being emerged as one of important mechanism to reduce carbon dioxide in relation to the deforestation. Although administrative boundary has already gained world-wide recognition as a typical method of monitoring unit in the process of GHG (Greenhouse Gas) reduction project, this approach did not provide a realistic evidence in the carbon sequestering monitoring in terms of UN-REDD; the meaningful comparison of land use patterns among watershed boundaries, interpretation for distribution trends of carbon density, calculation of opportunity cost, leakage management, etc. This research proposes a comparative evaluation framework in a more objective and quantitative way for carbon sequestering monitoring between administrative and watershed boundary approaches. Mt. Geumgang of North Korea was selected as a survey objective and an exhaustive and realistic comparison of carbon sequestration between the two approaches was conducted, based on change detection using TM satellite images. It was possible for drainage boundary approach to identify more detailed area-wide patterns of carbon distribution than traditional administrative one, such as estimations of state and trends, including historical trends, of land use / land cover and carbon density in the Mt. Geumgang. The distinctive changing trends in terms of carbon sequestration were specifically identified over the watershed boundary from 4.0% to 34.8% while less than 1% difference was observed in the administrative boundaries, which were resulting in almost 21-22%. It is anticipated that this research output could be used as a valuable reference to support more scientific and objective decision-making in introducing watershed boundary as carbon sequestering monitoring unit.

• Journal of Preventive Medicine and Public Health
• /
• 제41권6호
• /
• pp.365-372
• /
• 2008

Objectives : There are very few researches on North Korea's academic activities. Furthermore, it is doubtful that the available data are reliable. This study investigated research activities and knowledge structure in the field of Preventive Medicine in North Korea with a network analysis using co-authors and keywords. Methods : The data was composed of the North Korean Journal of preventive medicine ranged from Vol. 1 of 1997 to Vol. 4 of 2006. It was the matrix of 1,172 articles by 1,567 co-authors. We applied R procedure for keywords abstraction, and then sought for the outcome of network forms by spring-KK and shrinking network. Results : To comprehend the whole networks explicitly demonstrated that the academic activities in North Korea s preventive medicine were predisposed to centralization as similar as South Korea's, but on the other aspect they were prone to one-off intermittent segmentation. The principal co-author networks were formulated around some outstanding medical universities seemingly in addition to possible intervention by major researchers. The knowledge structure of network was based on experimentation judging from keywords such as drug, immunity, virus detection, infection, bacteria, anti-inflammation, etc. Conclusions : Though North Korea is a socialist regime, there were network of academic activities, which were deemed the existence of inducive mechanism affordable for free research. Article keywords has laid greater emphasis on experiment-based bacterial defection, sustainable immune system and prevention of infection. The kind of trend was a consistent characteristic in preventive medicine of North Korea haying close correlation with Koryo medical science.

• 대한핵의학회지
• /
• 제35권4호
• /
• pp.291-292
• /
• 2001

We report a case of malignant pericardial effusion originated from adenocarcinoma of the lung incidentally diagnosed by bone scintigraphy, prior to echocardiographic detection. A 76 year-old man with adenocarcinoma of the lung underwent Tc-99m MDP bone scintigraphy to evaluate skeletal metastasis. Anterior images of the chest of the bone scintigraphy unexpectedly showed diffuse increased activity in the region of the heart surrounded by an oval-shaped band of increased activity corresponding to the periphery of the cardiac silhouette (Fig. 1). There was no evidence of bony metastasis. Pericardial effusion was confirmed by echocardiography (Fig. 2) and malignant cells were revealed by subsequent microscopic examination of the pericardial fluid. Bone scintigraphy using Tc-99m phosphate compounds is commonly used to detect bony metastasis in cancer patients. Tc-99m phosphate compounds occasionally accumulate in extra-osseous sites, including $pleural^{1,2)},\;pericardial^{3,4)},\;and\;ascitic\;fluids^{5,6)}$. It has been reported that their accumulation in serous effusions should strongly suggest $malignancy^{1-6)}$. The exact mechanism for accumulation of Tc-99m phosphate compounds in serous effusions is unclear. Several investigators have proposed that the radiopharmaceuticals exuded directly from peripheral vessels to the serous cavity due to increased vascularity and vascular permeability, and bleeding by disruption of blood vessels due to cancerous $infiltration^{5,6)}$.