• Journal of Information Processing Systems
• /
• 제17권4호
• /
• pp.772-786
• /
• 2021

The process of tracking suspicious behavior manually on a system and gathering evidence are labor-intensive, variable, and experience-dependent. The system logs are the most important sources for evidences in this process. However, in the Microsoft Windows operating system, the action events are irregular and the log structure is difficult to audit. In this paper, we propose a model that overcomes these problems and efficiently analyzes Microsoft Windows logs. The proposed model extracts lists of both common and key events from the Microsoft Windows logs to determine detailed actions. In addition, we show an approach based on the proposed model applied to track illegal file access. The proposed approach employs three-step tracking templates using Elastic Stack as well as key-event, common-event lists and identify event lists, which enables visualization of the data for analysis. Using the three-step model, analysts can adjust the depth of their analysis.

• 한국철도학회논문집
• /
• 제11권3호
• /
• pp.342-348
• /
• 2008

본 논문에서는 철도안전법에 근거한 철도안전관리체계를 정의하고 영국의 철도안전관리체계, 국제항공안전관리체계, 보건안전경영체계 등을 조사하였다. 국내 철도운영자들의 안전관리규정과 철도종합안전심사결과 분석을 통하여 국내 철도운영기관들의 안전관리체계 현황과 문제점을 조사하고 국내 철도안전관리체계의 개선방안을 도출하였다. 먼저 안전관리체계의 지속 개선체계 수립을 위하여 최고경영자의 경영검토 등 안전관리체계 각 단계별 구체적 지속개선방안을 명시한 지침을 수립하여야 한다. 두 번째는 위험도관리 기반 SMS를 정착시키기 위하여 철도운영자들의 인식 전환, 위험도 분석 및 안전성 평가에 필요한 안전위험운영모델과 기본정보 공급체계 구축, 그리고 위험도관리에 필요한 구체적인 요구사항의 관련지침화가 시행되어야 한다.

• 한국도로학회논문집
• /
• 제13권1호
• /
• pp.97-105
• /
• 2011

본 연구에서는 고속도로를 대상으로 각각의 구간에 대한 선형유형을 구분하여 사고빈도모형을 개발하였다. 현재 사고빈도모형 부문의 연구는 주로 고속도로 구간 전체를 대상으로 한 연구가 대부분이기 때문에 거시적인 측면에서 사고빈도모형이 개발되었다고 할 수 있으며, 이에 따라 각각의 구간특성이 정확히 반영되지 않은 상태에서의 사고빈도를 예측하였다고 볼 수 있다. 본 연구에서는 이러한 문제점을 인식하여, 동질구간 분할법을 사용하여 고속도로의 평면선형을 직선부, 곡선부, 연속곡선부로 구분하였고, 이를 군집분석을 통하여 직선부와 곡선부의 유형을 구분하여 고속도로의 각각의 구간별 특성을 반영한 사고빈도모형을 구축하였다. 본 연구 결과는 고속도로 각 구간의 사고빈도를 예측하는데 있어 더 정확하고 합리적인 결과를 도출해 낼 것이라 판단한다.

• 한국식품위생안전성학회지
• /
• 제14권1호
• /
• pp.104-114
• /
• 1999

This study was conducted to find out the proper ways of implementation of Hazard Analysis Critical Control Point (HACCP) concepts applicable to the current Korean food inspection system. The following recommendations are based on an in-depth review of the Canadian Food Safety Enhancement Program (FSEP), which is one of the leading HACCP programs adapted to the food industry. Since 1997, the HACCP system has been voluntarily applied to meat processing plants in Korea in accordance with the Food Protection Law. But the guidelines are obscure and inadequate to expand to the diversity of food plants, and are therefore only applied to a limited number of plants of small scale enterprise. For these reasons, it is necessary to prepare an enhanced food safety control program focused not only on the HACCP plants but also on the non-HACCP plants. The national program should be the fundamental framework of a food safety control policy enforced by all the relevant authorities. The Prerequiste Program of Canadian Food Inspection Agency and Sanitation Standard Operating Procedures (SSOP) of FSIS are good example programs for the non-HACCP plants. These programs, which are a major part of the HACCP system, could easily be adapted to the Korean food industry. To improve the current HACCP implementation guideline, it is necessary to develop a detailed implementation manual, generic HACCP model, training program, and an audit program.

• 융합보안논문지
• /
• 제17권1호
• /
• pp.39-44
• /
• 2017

기존의 기업 정보보호 활동은 정보보호 조직 중심이 이었으며, 최고경영자는 정보보호와 기업경영은 별개의 것이라고 생각한다. 하지만 각종 보안사고가 끊임없이 발생하고 있으며, 이에 대응하기 위해서는 정보보호 조직만의 활동이 아니라 기업경영 측면에서의 정보보호 활동이 필요하다. 본 연구에서는 기존에 제시된 기업 거버넌스 및 IT거버넌스 등을 살펴보고 기업의 정보보호 활동에 기업의 비즈니스 목표와 경영진의 목표를 반영할 수 있는 정보보호 거버넌스 모델을 제시하고자 한다. 본 논문에서 제시하는 정보보호 거버넌스 모델은 계획 단계에서부터 최고경영자의 참여를 유도하여 정보보호 목표를 수립한다. 정보보호 목표에 따라 정보보호 계획 수립, 정보보호체계를 구축 및 운영하고, 컴플라이언스 감사, 취약점 분석 및 리스크 관리 등을 통해 그 결과를 최고경영자에게 보고함으로써 기업의 정보보호 활동을 강화할 수 있다.

• 보건행정학회지
• /
• 제18권2호
• /
• pp.19-38
• /
• 2008

Financial ratios are key indicators of an organization's financial and business conditions. Among various financial indicators, profitability, financial structure, financial activity and liquidity ratios are frequently used and analyzed. Using the structural equation modeling(SEM) technique, this study examines the structural causal relationships among key financial indicators. Data for this study are taken from complete financial statements from 142 hospitals that passed the standardization audit undertaken by the Korean Hospital Association from 1998 to 2001 for the purpose of accrediting teaching hospitals. In order to improve comparability, ratio values are standardized using the Blom's normal distribution. The final model of the SEM has four latent constructs: financial activity(total asset turnover, fixed asset turnover), liquidity(current ratio, quick ratio, collection period), financial structure(total debt to equity, long-term debt to equity, fixed assets to fund balance), and profitability(return on assets, normal profit to total assets, operating margin to gross revenue, normal profit to gross revenue). While examining several model fit indices(Chi-square (df) = 178.661 (40), likelihood ratio=4.467, RMR=.11, GFI=.849, RMSEA=.157), the final SEM we employed shows a relatively good fit. After examining the path coefficient of the constructs, the financial structure of the hospital affects the hospital's profitability in a statistically significant way. A hospital which utilizes its liabilities, more specifically fixed liabilities, and makes a stable investment decision for fixed assets was found to have a higher profitability than other hospitals. Then, the standard path coefficients were examined to directly compare the influence of variables. It was found that there were no statistically significant path coefficients among constructs. When it comes to variables, however, statistically significant relationships were found. between. financial activity and. fixed. asset turnover, and between profitability and normal profit to gross revenue. These results show that the observed variables of fixed asset turnover and normal profit to gross revenue can be used as indicators representing financial activity and profitability.

• 한국IT서비스학회지
• /
• 제21권4호
• /
• pp.63-74
• /
• 2022

Globally researchers at medical institutions are actively sharing COHORT data of patients to develop vaccines and treatments to overcome the COVID-19 crisis. OMOP-CDM, a common data model that efficiently shares medical data research independently operated by individual medical institutions has patient personal information (e.g. PII, PHI). Although PII and PHI are managed and shared indistinguishably through de-identification or anonymization in medical institutions they could not be guaranteed at 100% by complete de-identification and anonymization. For this reason the security of the OMOP-CDM database is important but there is no detailed and specific OMOP-CDM security inspection tool so risk mitigation measures are being taken with a general security inspection tool. This study intends to study and present a model for implementing a tool to check the security vulnerability of OMOP-CDM by analyzing the security guidelines for the US database and security controls of the personal information protection of the NIST. Additionally it intends to verify the implementation feasibility by real field demonstration in an actual 3 hospitals environment. As a result of checking the security status of the test server and the CDM database of the three hospitals in operation, most of the database audit and encryption functions were found to be insufficient. Based on these inspection results it was applied to the optimization study of the complex and time-consuming CDM CSF developed in the "Development of Security Framework Required for CDM-based Distributed Research" task of the Korea Health Industry Promotion Agency. According to several recent newspaper articles, Ramsomware attacks on financially large hospitals are intensifying. Organizations that are currently operating or will operate CDM databases need to install database audits(proofing) and encryption (data protection) that are not provided by the OMOP-CDM database template to prevent attackers from compromising.

• 대한교통학회지
• /
• 제28권2호
• /
• pp.151-159
• /
• 2010

본 논문은 기존 모형들보다 더 정확한 고속도로 사고 예측 모형을 개발하기 위해 수행한 연구 결과를 제시하고 있다. 기존 모형들은 도로 기하구조와 사고 건수 간 연관성을 밝히기 위해 해당 사고 지점 주변의도로 특성만을 고려하는 반면, 본 연구에서는 해당 사고지점 전방에 위치한 도로구간을 합쳐서 고려하는 점이 다르다. 차량교통사고는 주행중인 상황에서 발생하고, 특히 고속도로의 경우 한 지점의 차량 속도는 전방 도로 상황에 따라 민감하게 변하기 때문에 본 연구에서 적용한 기법은 상당히 현실적이라 할 수 있다. 모형을 구축하기 위해 서해안고속도로 4차로 구간 269.3km를 선정하여 기하구조 데이터를 구축하였고, 해당 구간에서 2003~2008년 6년 동안 발생한 1,664건의 교통사고를 매칭시켰다. 본 데이터의 사고발생특성은 포아송분포보다 음이항분포를 따르는 것으로 분석되었으며, 본 연구에서 개발한 모형에 따르면 교통사고 발생은 곡선길이와 곡선반경에 반비례 관계인 것으로 나타났다. 한편 교통사고 발생은 직선부의 직선길이에 비례하는 것으로 나타났다. 이 결과는 기존 연구 결과와는 다른 결과로서, 본 연구에서 가정했던대로 교통사고 발생은 해당 사고지점 전방에 위치한 도로구간상황에 의존한다는 것을 알 수 있다. 그 외에도 본 연구에서는 내리막 직선길이, 과속카메라 설치여부, 분류부와 합류부의 교통사고 발생에 미치는 영향에 대해서도 중요한 결과를 도출했다. 본 연구 결과는 고속도로 도로 설계와 안전 진단 사업에 도움이 될 것으로 기대하며, 향후 본 연구 기법을 일반 국도나 도시내 주요 도로들에 대해서도 적용해 보는 것이 바람직할 것이다.

• 한국물환경학회지
• /
• 제36권6호
• /
• pp.546-558
• /
• 2020

While industrialization has provided in abundance, the pollution it creates has caused untold damage to the environment, increasing the frequency and severity of natural disasters through changes in global climate patterns. The World Risk Forum's (WEF) World Risk Report presented the results of a survey of experts from around the world detailing the most influential risk factors over the next decade. Notably, the failure to respond to climate change ranked first and the global water crisis third. The extreme drought in the western Chungnam province was unexpected in 2016. At the time, the water level of Boryeong Dam was drastically decreased due to receiving less than half the average recorded rainfall in the region that year. The Boryeong Dam diversion pipeline has the capacity to solve the water shortage problem between these two regions by providing water from Geumgang to the western part of Chungnam, including Boryeong City. Current weather trends suggest drought is likely to continue in western Chungnam, which uses the Boryeong Dam as an intake source. This makes it necessary to operate Boryeong Dam diversion pipeline in an efficient and effective manner. SWAT is a watershed scale model developed to predict the impact of land management practices on water. The SWAT model was used in this study to evaluate the adequacy of the Boryeong Dam diversion pipeline operational plan by comparing it to present Boryeong Dam diversion pipeline operation. By investigating the number of days required to reach each reservoir stage, we determined that the number of days required to reach the boundary stage was less than that of the current operation. This determination accounts for the caveats that the Boryeong Dam waterway was not operated and only one pump will be operated from October to May of next year. As our results suggest, the most stable operation scenario is to operate two pumps at all times. This can be accomplished by operating two pumps from the caution stage to increase the number of pumps whenever the stage is raised. In addition to the stable operation of the Boryeong Dam pipeline, policy considerations are required with regard to imposing a water use charge on users of the Boryeong Dam region.

• 유통과학연구
• /
• 제12권4호
• /
• pp.85-92
• /
• 2014

Purpose - This study conducted empirical research on non-financial corporations listed on the stock exchange from 2001 to 2010, focusing on the effects of corporate governance on real earnings management of corporations. In particular, this study examined primarily the impact of the largest shareholder who could use earnings management to pursue his own self-interest, and foreign investors who played a checking role against the largest shareholders. The study also reviewed the relationship between corporate governance and earnings management while also considering corporate growth. Research design, data, and methodology - As for the measurements of real earnings management, abnormal operating cash flow and abnormal production cost were utilized. As for the independent variables, share ratio of the largest shareholder and affiliate person (M) and share ratio of foreign investors (FT) were leveraged. This study excluded those organizations that had changed their fiscal years, those that had not submitted an audit report, corporations under supervision, delisted corporations, corporations that had changed their business type, and so on, from the non-financial corporations out of the publicly traded corporations whose fiscal year ended in December from 2001 to 2010 in addition, KIS values were utilized for the corporate financial data in the study. To verify whether management structure and growth had an impact on real earnings management of a corporation through empirical analysis, a multiple regression analysis model was applied. Result - First, as a result of the analysis, the share ratio (M) of the largest shareholder and affiliate person was found to have a significant positive correlation with abnormal cash flow from operations(ACF) and abnormal production cost (APD). When controlling the growth, the share ratio (M) of the largest shareholder and affiliate person was found to have an insignificant correlation with abnormal cash flow from operations(ACF) but a significant correlation with abnormal production cost (APD). Second, foreign ownership (FT) was found to have a significant positive correlation with abnormal cash flow from operations(ACF) and abnormal production cost (APD) at the confidence level of 1 percent when not including the growth dummy. When controlling the growth, foreign ownership (FT) was found to have a significant negative correlation with abnormal cash flow from operations (ACF) and with abnormal production cost (APD). Conclusion - The results imply that the largest shareholder is closely related to earnings management through real activities regardless of corporate growth. It is also possible to determine from these results that foreign investors are related to earnings management through real activities when not considering corporate growth, but that they would reduce earnings management in the case of considering the growth. Thus, this study verified along with the existing studies that foreign investors were conducting the control function on controlling shareholders.