• Annual Conference of KIPS
• /
• 2007.05a
• /
• pp.1093-1095
• /
• 2007

As the networking and data communication technology is making progress, there has been an augmented concern about the security. Intrusion Detection and Prevention Systems have long being providing a reliable layer in the field of Network Security. Intrusion Detection System works on analyzing the traffic and finding a known intrusion or attack pattern in that traffic. But as the new technology provides betterment for the world of the Internet; it also provides new and efficient ways for hacker to intrude in the system. Hence, these patterns on which IDS & IPS work need to be updated. For detecting the power and knowledge of attackers we sometimes make use of Honey-pots. In this paper, we propose a Honey-pot architecture that automatically updates the Intrusion's Signature Knowledge Base of the IDS in a Network.

• Korean Security Journal
• /
• no.24
• /
• pp.147-170
• /
• 2010

This study is to present a improvement directions for the protection of industrial key technology. For the purpose of the study, the survey was carried out on the administrative security activity of 68 enterprises including Large companies, small-midium companies and public corporations. survey result on the 10 items of security policy, 10 items of personal management and 7 items of the assets management are as follows; First, stable foundation for the efficient implement of security policy is needed. Carrying a security policy into practice and continuous upgrade should be fulfilled with drawing-up of the policy. Also for the vitalization of security activity, arrangement of security organization and security manager are needed with mutual assistance in the company. Periodic security inspection should be practiced for the improvement of security level and security understanding. Second, the increase of investment for security job is needed for security invigoration. Securing cooperation channel with professional security facility such as National Intelligence Service, Korea internet & security agency, Information security consulting company, security research institute is needed, also security outsourcing could be considered as the method of above investment. Especially small-midium company is very vulnerable compared with Large company and public corporation in security management, so increase of government's budget for security support system is necessary. Third, human resource management is important, because the main cause of leak of confidential information is person. Regular education rate for new employee and staff members is relatively high, but the vitalization of security oath for staff members and the third party who access to key technology is necessary. Also access right to key information should be changed whenever access right changes. Reinforcement of management of resigned person such as security oath, the elimination of access right to key information and the deletion of account. is needed. Forth, the control and management of important asset including patent and design should be tightened. Classification of importance of asset and periodic inspection are necessary with the effects evaluation of leak of asset.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.25 no.1
• /
• pp.181-195
• /
• 2015

Financial industries have operated internal and external network with an unified system for continual business process of customers and other organizations in the past. The financial supervising authority requires more technical and managerial protecting policy to financial industries related to the exposure as danger of external attacks or information leakage. Financial industries performed network separation into internal business and external internet networks for protecting IT assets from malware infection accessing internet or hacking attacks and prohibiting leakage of customers' personal and financial information following financial supervising authority and redefine security policy to fit on network separated-condition. In this study, effectiveness for network separation policy was examined on malware inflow and verified that malware inflow in all routes can be blocked by the policy with analyzing operration data of a financial company, estimating network separation. Result of this study proves that malware infection route by portable storages was not completely blocked even on adapting network-separated condition. As a solution for this, efficient security policy would be suggested in this paper as controlling portable storages for maximizing effectiveness of network separation.

• Journal of Multimedia Information System
• /
• v.4 no.4
• /
• pp.249-254
• /
• 2017

Digital vector maps must be compressed effectively for transmission or storage in Web GIS (geographic information system) and mobile GIS applications. This paper presents a polyline compression method that consists of polyline feature-based hybrid simplification and second derivative-based data compression. Experimental results verify that our method has higher simplification and compression efficiency than conventional methods and produces good quality compressed maps.

• Proceedings of the Korean Information Science Society Conference
• /
• 2003.10a
• /
• pp.868-870
• /
• 2003

정보화 역기능으로부터 주요 데이터를 보호하기 위해서는 안전성과 신뢰성이 검증된 정보보호시스템을 사용하여 정보보호 수준을 향상시킬 수 있도록 정보보호시스템 평가.인증제도에 대한 필요성이 더욱 높아지고 있다. 또한, 정보보호시스템의 수가 많아지고 다양화됨에 따라, 시험/평가업무량도 증대 될 것이며 국내 평가관리의 중요성이 점차 증가하고 있다. 따라서 본 논문에서는 각종 평가기관에서 평가의 효율성(최소의 비용으로 최대의 평가업무를 수행)을 기하기 위해 세부평가기술의 통합하고 평가결과 관리를 위한 그룹웨어인 정보보호시스템 평가관리시스템(EMS)을 제시한다.

• Annual Conference of KIPS
• /
• 2009.11a
• /
• pp.601-602
• /
• 2009

최근 기업 및 관공서 등에서 비용대비 효과적인 Linux System을 적극 도입하면서 그 관리와 보안사항이 이슈화되고 있다. 본고는 현업의 관리자들이 손쉽게 적용할 수 있는 시스템 보안점검 절차 및 사고 발생시 보안프로그램을 이용한 대응 방법에 대해 제안하고자 한다.

• Journal of Korea Society of Digital Industry and Information Management
• /
• v.4 no.4
• /
• pp.1-8
• /
• 2008

The USN is important in technique, unmanned observation using wireless network camera, detection technique that use intrusion detection sensor. But these encrypted data transmission and processing technique through sensor network, method of the staff's location recognition and arrangement aren't serviced still as a integrated system in facility security industry. This paper proposed that improve facility management, the staff present recognition and system efficiency using RFID, USN and wireless camera.

• Proceedings of the IEEK Conference
• /
• 2001.06a
• /
• pp.149-152
• /
• 2001

In general, the wireless services based on markup language and provided with wired network requires dedicated gateway system. But in this case, the serious problems such as security vulnerabilities, damage of contents are occurred to the application. In this paper, to improve above problems, we designed and implemented the new application named "Interacted Wired St Wireless Student Information System" using J2ME(Java 2 Micro Edition) platform and XML(eXtensible Markup Language) to transmit user data safely and support the system extendibility maintaining data format consistency respectively.pectively.

• Proceedings of the IEEK Conference
• /
• summer
• /
• pp.321-324
• /
• 2004

A VPN is widely used in a communications environment which access is controlled to permit peer connections only within a defined community of interest. It is constructed through some form of partitioning of a common underlying communication medium, where this underlying communications medium provides services to the network on a non-exclusive basis. In this paper, we have analyzed a variety of architecture to implement Giga bps VPN system. The proposed architecture will satisfy the needs of clients who adopt Giga bps VPN system in the various environments.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.35 no.5B
• /
• pp.785-793
• /
• 2010

The current excessive limitations to mobile RFID tags and readers make it impossible to apply present codes and protocols. The technology for information and privacy protection should be developed in terms of general interconnection among elements and their characteristics of mobile RFID in order to such technology that meets the RFID circumstances. In this paper, transplanting and extending security library for protecting mobile RFID information in secure mobile RFID terminal S/W platform system to support security application on the path of all data from RFID reader to application server.