• 융합보안논문지
• /
• 제6권2호
• /
• pp.13-20
• /
• 2006

국내 인터넷뱅킹 환경은 Microsoft 사의 Internet Explorer(IE) 브라우저에 맞게 구축되어 있어 Linux나 FreeBSD 등과 같은 공개 운영체제 및 웹 브라우저에서는 인터넷뱅킹 서비스를 이용할 수 없었다. 이런 문제 해결을 위해, 본 논문에서는 먼저 SEED를 이용한 공개 소프트웨어 환경에서의 전자 지불 시스템을 위한 전자 서명 시스템을 개발한다. 국내 인터넷뱅킹은 현재 공인인증기관이 발행하는 공인인증서를 통해 인증 및 전자서명 검증이 이루어져야 하는데, 그에 맞춰 공인 인증서 유효성 검증 시스템을 분석 및 개발한다. 마지막으로 자체 개발한 웹 서버에서는 이미 가상 인터넷 뱅킹환경이 구축되어 있어 SEED가 포팅 된 모질라 환경을 가지고 있는 클라이언트에서는 인증서를 설치하여 기본 인터넷뱅킹 서비스를 가상으로 받을 수 있으며 인증서 인증 및 전자서명이 정상적으로 작동되고 있다는 것을 구현을 통해 확인했다.

• Journal of Preventive Medicine and Public Health
• /
• 제38권4호
• /
• pp.443-448
• /
• 2005

Objectives : This study was done to evaluate the reliability of education and occupational class between using the health survey and the death certificate data. Methods : The 1998 National Health and Nutrition Examination Survey (NHANES) was conducted on a cross-sectional probability sample of South Korean households, and it contained unique 13-digit personal identification numbers that were linked to the data on mortality from the Korean National Statistical Office. The data from 263 deaths were used to estimate the agreement rates and the Kappa indices of the education and occupational class between using the NHANES data and the death certificate data. Results : The simple and weighted Kappa indices for education were 0.60 (95% CI=0.53-0.68) and 0.73 (95% CI=0.67-0.79) respectively, if the educational level was grouped into five categories: no-formal-education, elementary-school, middle-school, high-school and college or over. The overall agreement rate was 71.9% for these educational groups. The magnitude of reliability, as measured by the overall agreement rates and Kappa indices, tended to increase with a decrease in the educational class. The number of non-educated people with using the death certificate data was smaller than that with using the NHANES data. For the occupational class (manual workers, non-manual workers and others), the Kappa index was 0.40 (95% CI=0.30-0.51), which was relatively lower than that for the educational class. Compared with the NHANES, the number of non-manual workers for the deceased who were aged 30-64 tended to be increased (8 to 12) when using the death certificate data, whereas the number of manual workers tended to be decreased (59 to 41). Conclusions : The socioeconomic inequalities in the mortality rates that were based on the previous unlinked studies in South Korea were not due to a numerator/denominator bias. The mortality rates for the manual workers and the no-education groups might have been underestimated.

• 디지털산업정보학회논문지
• /
• 제11권3호
• /
• pp.53-62
• /
• 2015

Recently, number of tablet or Smartphone users increased significantly in domestic and around the world. But violation of personal information such as leakage, misuse and abuse are constantly occurring by using mobile devices which is very useful in our society. Therefore, in this paper it will talk about the problems in the network environment of the mobile environment such as tablet and Smartphone, Mobile Malware, hacking of the public key certificate, which could be potential threat to mobile environment. This thesis will research for people to use their mobile devices more reliable and safer in mobile environment from invasion and leakage of personal information. In order to use Smartphone safely, users have to use Wi-Fi and Bluetooth carefully in the public area. This paper will research how to use App safely and characteristic of risk of worm and Malware spreading. Because of security vulnerabilities of the public key certificate, it will suggest new type of security certification. In order to prevent from the information leakage and infect from Malware in mobile environment without knowing, this thesis will analyze the improved way to manage and use the mobile device.

• 한국컴퓨터정보학회논문지
• /
• 제15권5호
• /
• pp.113-124
• /
• 2010

본 논문에서는 안전한 사용자 인증의 초석인 인증서의 원천지 무결성 보장과 함께 사용자의 편의성 향상을 위한 방안으로써, PKI 인증서 인증기법에 디바이스 ID에 기반한 하이브리드 공인 인증 기법을 제안하여 기존 하이브리드 PKI 공인인증서 인증기법에서의 사용자 편의성과 보안성을 향상시키고자 한다. 본 논문에서 제안하는 모델의 특징은 크게 다섯 가지로 설명할 수 있다. 첫째, 사용자 스스로 각각의 인증 상황 및 보안 수준에 맞는 정책을 선택 할 수 있어 사용자의 편의성을 향상 시킬 수 있다. 둘째, 정책별 디바이스 ID의 해시 값인 DLDI Key(Device Location Dependence ID Key)의 비교를 통해 사용자 인증서의 원천지 무결성을 보장할 수 있다. 셋째, EOTP Key(Event of One Time Password Key)를 통해서 인증서를 암호화, 복호화 하는 키의 값을 매 인증 시도마다 변경시킴으로써 보안성을 향상 시킬 수 있다. 넷째, 인증서에 Index 값을 추가시켜 멀티 디바이스에 인증서의 저장이 가능하다. 다섯째, 보안 카드 등 인증서의 원천지 무결성 보장을 위한 추가적인 장치가 필요치 않아, 인증 처리 시간의 지연을 단축시킬 수 있으며 인증 서버의 연산 부하를 감소시킬 수 있다.

• Journal of Preventive Medicine and Public Health
• /
• 제41권1호
• /
• pp.10-16
• /
• 2008

Objectives : Korea faces a number of challenges to meet demands in the area of geriatric professional medicine in a country with a rapidly ageing population. We evaluated the satisfaction and feasibility of the current education certification for geriatric physicians. Methods : Geriatric physicians who were deemed qualified by the Korean Geriatrics Society during the period of 2001 to 2005 (n=2,200) were asked to complete structured questionnaires sent to them by mail about their satisfaction of and need for certificates of education, as well as their opinions on their geriatric specialty training. A total of 419 physicians responded. Descriptive analysis and hierarchical regression were performed to rate the respondents' satisfaction, the characteristics of the need for clarity and utility in education certification, and the characteristics of their patients. Results : Although most respondents were satisfied with their education certification, those who had more elderly patients, aged 65 or older, and those who had more cognitively impaired patients, rated their education as significantly lower than did other physicians. Both groups expressed the need for more the comprehensive care and assessment concerning of their education. Multiple regression analysis indicated that satisfaction with geriatric physician qualification was associated with a physician's age, specialty, and percentage of elderly patients. Conclusions : This study suggests that the current system of education certification is limited in terms of feasibility and physician satisfaction.

• 시큐리티연구
• /
• 제6호
• /
• pp.103-122
• /
• 2003

Protection sciences are new science. therefore, protection martial arts sciences are will studied be based on study of protection in order to supply high level by request. Moreover, It is reconstruction that protection martial arts masters education, systematic manage, certificate system, protection martial arts recognition certificate, protection martial arts equipment, practice of protection martial arts. Protection martial arts occurs on the unforeseen accident and body guarding, therefore martial arts concept of protection martial arts different general martial arts and sport. In order to develope of protection martial arts First, scientific thesis need of protection martial arts learning. Especially, aims of present protection martial arts is not protect oneself, protect the VIP to safely from all dangers is different thing with aims of general martial arts. Instinct that VIP protect rather than oneself should study and develop. Second, techniques and model of protection martial arts spread to who in connection with security service by systematic and organized. Preferentially, study of protection martial arts Techniques and model possible the protection martial arts learned society, found laboratory and endowed protection martial arts society organize and prevention for random of protection martial arts and must make the original protection martial arts. Third, protection martial arts official certificate and license system must organize in order to training and manage of protection martial art master, Match director(First Second), life physical director(First, Second, Third) is systematically manage by Ministry of Culture & Tourism Republic of Korea. Like this protection martial arts also classify the certificate by scholarship and experience. Fourth, In union to university, private security service company, public institution, police and system that possible leaning to protection martial arts certificate course important. In addition, destroy the commercial character of present martial arts and cultivate the pure martial arts mind, should develop to martial arts in order to improve the humanism and temperament of right body guard.

• 한국전자거래학회지
• /
• 제16권4호
• /
• pp.1-16
• /
• 2011

전자서명법에 근간을 두고 있는 공인인증서는 경제활동 인구의 95%이상이 사용함에 따라 일상생활과 밀접한 관계가 되었고 최근 보안강도 256bit 수준의 암호체계 고도화로 인해 안전성과 신뢰성에 큰 향상이 기대된다. 공개키 기반구조(PKI)를 바탕으로 하는 공인인증서는 보안성에서 큰 문제가 없는 것으로 알려져 왔지만 공인인증서 유출 시 비밀번호 검출 공격에 대한 위협이 존재한다. 기존 연구에서 이러한 취약점을 보완하기 위하여 비밀번호 대체수단 제공, 공인인증서 저장 매체 확대, 복수 인증방식 등과 같은 다양한 해결방안을 제시하였다. 이러한 방법은 공인인증서의 사용에 대한 보완적 기능을 수행하지만, 비밀번호의 안정성을 보장해주지는 못하는 한계점을 가진다. 따라서 본 연구에서는 비밀번호의 안전성을 높이기 위한 방법으로 비밀번호의 보안강도를 증가시키는 방안을 제시한다. 이에 따라 공인인증서의 관리 보안성과 사용 편리성의 향상이 가능하다. 이 연구는 공인인증서의 보안성 향상과 활용에 관한 기술 개발 및 향후 연구에 활용될 수 있다.

• 경영과정보연구
• /
• 제15권
• /
• pp.165-186
• /
• 2004

When certificates of qualification relating to computer have shown up like dam water and meeting the age of office automation (OA) utilizing computer throughout the community, and at the point of time when the promotion of efficiency of duty is attempted by utilizing internet, the improvement plans should be groped for to expect to cultivate the national industrial manpower efficiently and by easily approaching the related OA certificates of qualification related to computer so that everyone can acauire the additional points for recognition of credit, entering company and promotion by the dimension of public trust, recognition degree, practial using level in actual affairs, reliability of problems and after manpower management of the certificates of qualification less expensively and saving time. the concrete plans are as follows: First, in the standard of making questions for the examination of 'Computer Utilizing Ability' executed by the chamber of commerce and Industry, there is the independent examination, but by inserting the presentation portion in the higher grade and middle grade, it should be contributed to improve office efficiency both in mane and reality. Second, though the internet retriever's examination is executed by the nongovernment specialized examination, since it is actually widely utilized in the office activities due to universality of using internet, it is now the time to newly establish and accommodate it as the national examination of 'internet Utilizing Ability', not the interest specialized retriever. Third, the applicants, shall take examination for the nongoverment certificate of qualification or enterprise's certificate of qualification at the date and place designated by the applicant, but there are much restrictions for the national certificate of qualification, so the date of examination shall be decided flexibly and efficiently to give chances to students by adjusting to the semesters of the students. Fourth, in this rapidly changing age of the informationalization community, the acquisition of the certificates of qualification through the university and the designated and entrusted educational institutes should be increased the proportion of activation to become officially recognized, and the extent of special treatment for obtainers of the certificate of qualification should be expanded to equip manpower competitive power in the age of informationalization.

• 한국멀티미디어학회논문지
• /
• 제8권1호
• /
• pp.79-87
• /
• 2005

공개키 연산기는 전자상거래 환경에서 사용자 인증, 서명 및 키 분배 등에 있어서 매우 중요한 기반요소이다. 유선망 환경에서는 공인 인증서를 이용한 전자상거래가 이미 활성화되었으나, 무선망 환경에서는 무선 단말기의 제약으로 인하여 아직까지 보편화되지 못하고 있는 실정이다. 본 논문에서는 소프트웨어 프로파일링 기법을 적용하여 공개키 연산기 내부 연산별 부담(Overhead)을 측정하고, 이 정보를 기반으로 통합 설계에 적용할 수 있는 방안을 제시한다. 또한, 통합 시스템의 성능 예측 방안 및 하드웨어와 소프트웨어간의 통신부담을 줄일 수 있는 방안에 대해서 제시하며, 예제 모델로서 EC-Elgamal 알고리즘의 연산과정을 정량적으로 측정하고 분석하였다.

• 한국전자거래학회:학술대회논문집
• /
• 한국전자거래학회 1997년도 한국전자거래학회 종합학술대회지
• /
• pp.167-184
• /
• 1997

암호화 기술의 확장성과 비도 측면에서 우수한 공개키 기반 하부구조(Public Key Infrastructure)는 공개키를 보증하는 기반 기술과 인증서의 안전한 사용 기술로 구성되어있으며, 전자상거래의 기본 기술중 하나이다. 이러한 기본 기술 중에는 키 복구(Key Recovery) 및 비밀 분산(Secret Sharing) 기술등이 포함되며, 인증기관(Certificate Authority： CA)을 통한 키 관리 효율성 및 인중 기관과 사용자 간 안전한 정보 교환 기술이 요구된다. 본 논문에서는 인터넷 기반의 전자 상거래 시 사용되는 공개키 기반 하부구조에 대하여 검토 분석한다.