• Proceedings of the CALSEC Conference
• /
• 2005.03a
• /
• pp.62-67
• /
• 2005

In traditional approach, enterprise-wide consistent security policy enforcement for applications is very difficult task. Therefore, industry is now moving towards new unified enterprise application security concept that consist of centralized authentication and authorization mechanism. The eXtensible Access Control Markup Language (XACML); an XML-based standard defined by OASIS, is most suitable choice which can support centralized, role based, context aware access control mechanism. It is designed to provide universal standard for writing authorization policies and access control request/response language for managing access to the resources. This paper includes a brief overview on XACML and discusses its benefits, limitations and a data flow process. We propose a new generic access control architecture that supports enterprise wide centralized application level access control mechanism using XACML. The other benefits which can be achieved through this architecture are, reduce adnministration cost and complexity, support of heterogeneous computing platforms, centralized monitoring system, automatic fail over, scalability and availability, open standard based solution and secure communication.

• IE interfaces
• /
• v.20 no.2
• /
• pp.177-185
• /
• 2007

e-Business in healthcare sector has been called e-Health, which is evolving into u-Health with advances of ubiquitous technologies. Seamless information sharing among health organizations is being discussed in many nations including USA, UK, Australia and Korea. Efforts for establishing the electronic health record (EHR) system and a nation-wide information sharing environment are called NHII (National Health Information Infrastructure) initiatives. With the advent of u-Health and progress of health information systems, information security issues in healthcare sector have become a very significant problem. In this paper, we analyze several issues on health information security occurring in u-Health environment and develop an information security standard for protecting health information. It is expected that the standard proposed in this work could be established as a national standard after sufficient reviews by information security experts, stakeholders in healthcare sector, and health professionals. Health organizations can establish comprehensive information security systems and protect health information more effectively using the standard. The result of this paper also contributes to relieving worries about privacy and security of individually identifiable health information brought by NHII implementation and u-Health systems.

• International Commerce and Information Review
• /
• v.7 no.1
• /
• pp.3-18
• /
• 2005

The purpose of this study is to investigate the determinants of critical success and to analyze the main factors which are affecting the successful implementation of Internet shopping mall. The major findings of empirical analysis are as follows : 1) The degree of searching easuness in the internet shopping mall is statistical significance. 2) The degree of customer response is the important success factor. 3) The speed of connection exert a beneficial influence upon the performance of shopping mall. 4) The standard of security system is be in direct proportion to the performance of shopping mall The result of this study will be useful for the chief executive officers to make more rational decision making for e-Business strategies is related to the Internet shopping mall. The paper also strives to provoke debate in this area with to encouraging further research on the topic.

• IE interfaces
• /
• v.20 no.3
• /
• pp.257-266
• /
• 2007

To survive in rapidly changing business environment, the enterprises of all over the world are trying to integrate their IT infra structure and are trying to automate their business process. Service Oriented Architecture (SOA) is being accepted as an IT standard to support efficient system integration and flexible business process automation between enterprises or departments. The material control system is required this software architecture between manufacturing company and materials supply vendors. This paper introduces concept of SOA, relevant technology about SOA such as Web Services and Business Process Execution Language (BPEL) and Enterprise Service Bus (ESB) and describes how to automate materials control process by designing the material control system based on SOA. The analysis of requirements is proceeded by Unified Modeling Language (UML) and SOA delivery strategy is selected the top-down strategy. And this paper describes how to derive services and operations and how to arrange services in three service layers and how to design business process.

• Proceedings of the CALSEC Conference
• /
• 1998.10a
• /
• pp.57-68
• /
• 1998

ㆍ STEP is an International Standard (ISO 10303) - that defines the methodology to create computer interpretable product data models. ㆍ STEP Implementation - allows exchange and sharing of product data while retaining semantics throughout the product life cycle. ' STEP is in deployment - PDM data exchange at Boeing and others - Geometry data exchange at GM and others ㆍ The STEP community overcomes obstacles - “They will never finish the standard” (done 1994) - “They will never be able to transfer solids” (done 1995) - “They will never make solids transfer reliable” (done 1997) - “They will never implement all those Application Protocols”(TBD)(omitted)

• Proceedings of the CALSEC Conference
• /
• 2000.08a
• /
• pp.179-186
• /
• 2000

ㆍ A sub-set of SGML (Standard Generalized Markup Language) ㆍ A family of standards ㆍ XML 1.0 is the specification that defines what tags, attributes and other XML nodes are ㆍ License-free, platform-independent and well-supported ㆍ Simple ▶ Human-readable, easy to use ㆍ Extensible ▶ A dynamic data model ㆍ Flexible ▶ For handling complex data ㆍ Portable ▶ For cross-platform data exchange ㆍ Standard ▶ Easy to integrate, widely adopted(omitted)

• Proceedings of the CALSEC Conference
• /
• 2004.02a
• /
• pp.332-335
• /
• 2004

Issues ·Bottom-up v.s. Top-down Development ＆ Evaluation ·Syntax-Directed v.s. Conceptual Modeling -Reusing and Easy understanding -User friendliness and Concrete Rules ·No Aligned Rules and Guidelines for Developing Document Structures from Conceptual Information Models(omitted)

• The Journal of Society for e-Business Studies
• /
• v.8 no.4
• /
• pp.53-68
• /
• 2003

Currently, it is possible to buy almost anything from books(Amazon.com) to airplane tickets(Travelocity.com) using the world wide web. The purpose of this research is to develop a "clean interface" between design and fabrication facilities for the production of custom machined parts through Internet. The current mechanism for production of prototype parts that can be fabricated using standard machine tools like milling machines, requires a process of part description preparation, bidding, contract award, and finally fabrication and delivery of the part. This is a substantially more complex process than buying a book or airplane ticket. In this paper, we try to define the ambiguous part description using XML based data exchange format and to enable e-commerce in this field. The research accomplishments are summarized: 1. Creation of a new format for data exchange of machined prototype parts, 2. Development of a prototype system to illustrate how the XML data can be effectively used to conduct e-Commerce for custom machined parts, 3. Testing of the methodology with a number of parts.

• International Commerce and Information Review
• /
• v.10 no.4
• /
• pp.81-96
• /
• 2008

uEFL is an open source solution to integrate general business/learning activities and processes. uEFL is originally developed to adopt LD (Learning Design) specification, which represents learning as various combination of learning activities with learning conditions and outcomes. Learning activities are described with participant's role, learning environment, and contextual sequence. This viewpoint resembles BPM (Business Process Modeling). uEFL can convert LD to BPM description. uEFL engine can run converted LD activity with other business activities. This paper presents 4 templates and 2 sample models for uEFL. The templates and models will show how learning activities can be integrated with business activities efficiently.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.36 no.12B
• /
• pp.1509-1521
• /
• 2011

WfMC, which is one of the international standardization organizations leading the business process and workflow technologies, has been officially released the BPAF1.0 that is a standard format to record process instances' event logs according as the business process intelligence mining technologies have recently issued in the business process and workflow literature. The business process mining technologies consist of two groups of algorithms and their analysis techniques; one is to rediscover flow-oriented process-intelligence, such as control-flow, data-flow, role-flow, and actor-flow intelligence, from process instances' event logs, and the other has something to do with rediscovering relation-oriented process-intelligence like process-driven social networks and process-driven affiliation networks from the event logs. The current standardized format of BPAF1.0 aims at only supporting the control-flow oriented process-intelligence mining techniques, and so it is unable to properly support the relation-oriented process-intelligence mining techniques. Therefore, this paper tries to extend the BPAF1.0 so as to reasonably support the relation-oriented process-intelligence mining techniques, and the extended BPAF is termed BPAF2.0. Particularly, we have a plan to standardize the extended BPAF2.0 as not only the national standard specifications through the e-Business project group of TTA, but also the international standard specifications of WfMC.