• International Journal of Computer Science & Network Security
• /
• v.21 no.12
• /
• pp.207-212
• /
• 2021

A buffer overflow attack is carried out to subvert privileged program functions to gain control of the program and thus control the host. Buffer overflow attacks should be prevented by risk managers by eradicating and detecting them before the software is utilized. While calculating the size, correct variables should be chosen by risk managers in situations where fixed-length buffers are being used to avoid placing excess data that leads to the creation of an overflow. Metamorphism can also be used as it is capable of protecting data by attaining a reasonable resistance level [1]. In addition, risk management teams should ensure they access the latest updates for their application server products that support the internet infrastructure and the recent bug reports [2]. Scanners that can detect buffer overflows' flaws in their custom web applications and server products should be used by risk management teams to scan their websites. This paper presents an experiment of buffer overflow vulnerability and attack. The aims to study of a buffer overflow mechanism, types, and countermeasures. In addition, to comprehend the current detection plus prevention approaches that can be executed to prevent future attacks or mitigate the impacts of similar attacks.

• Nuclear Engineering and Technology
• /
• v.54 no.12
• /
• pp.4601-4619
• /
• 2022

The classical Probabilistic Safety Analysis (PSA) does not include any time dependence explicitly. However, the success criteria (SC) could evolve during the cycle for some initiating events. In that sense, there is a type of sequence in which this time-dependency is quite important, the family of Anticipated Transient without Scram (ATWS) sequences in Pressurized Water Reactors. Therefore, a new risk-informed approach is proposed in this paper, which makes it possible to obtain the time-dependent SC evolution of the safety functions affected by the Moderator Temperature Coefficient (MTC) value. Then, the evolution of the ATWS conditional core damage probability (CCDP) could be obtained using a PSA model. To quantify the CCDP, the average values of the time-dependent failure probabilities must be computed. Finally, the comparison between the CCDP obtained through the application of the classical PSA approach and the new one makes it possible to quantify the impact of time-dependence on the SC of the headers that this new risk-informed ATWS approach can provide.

• Geomechanics and Engineering
• /
• v.37 no.6
• /
• pp.565-576
• /
• 2024

In this study, the earthquake risk assessment of single-story RC precast buildings in Turkey was carried out using loss curves. In this regard, Kocaeli, a seismically active city in the Marmara region, and this building class, which is preferred intensively, were considered. Quality and period parameters were defined based on structural and geometric properties. Depending on these parameters, nine main sub-classes were defined to represent the building stock in the region. First, considering the mean fragility curves and four different central damage ratio models, vulnerability curves for each sub-class were computed as a function of spectral acceleration. Then, probabilistic seismic hazard analyses were performed for stiff and soft soil conditions for different earthquake probabilities of exceedance in 50 years. In the last step, 90 loss curves were derived based on vulnerability and hazard results. Within the scope of the study, the comparative parametric evaluations for three different earthquake intensity levels showed that the structural damage ratio values for nine sub-classes changed significantly. In addition, the quality parameter was found to be more effective on a structure's damage state than the period parameter. It is evident that since loss curves allow direct loss ratio calculation for any hazard level without needing seismic hazard and damage analysis, they are considered essential tools in rapid earthquake risk estimation and mitigation initiatives.

• The Korean Journal of Financial Management
• /
• v.24 no.2
• /
• pp.147-181
• /
• 2007

Our article investigates the risk implication of ownership structure in life insurance companies. We set up a model to identify the priority structure of policyholder's and shareholder's cashflow claims, and to derive its implications. Current literature on this issue has focused on the agency paradigm or the risk-sharing efficiency. Fama and Jensen(1983a, 1983b) and Mayers and Smith(1981, 1986, 1988, 1990, 1994) argue that the survival of both the corporate and the mutual form of organization is due in part to the relative efficiencies in controlling agency problems. With regard to insurance business, agency problems arise because of the three functions inherent in the organizations:manager, risk-bearer(owner), and policyholder. Stock insurers are characterized by the potentially complete separation of all three functions while mutual insurers merger the policyholder with the ownership function. Doherty and Dionne(1993) and Doherty(1991) concentrate their analysis on differences in the efficiency of risk sharing between participating and non-participating policies. They argue that when the undiversifiable risk has higher portion in business risk, combining policy and equity claims into a single package is a more efficient risk-sharing contract than a simple prepaid risk-transfer. Among various methods for assembling the policy/equity package, Doherty and Dionne(1993) and Doherty(1991) suggest that policy/equity package offered by the mutual is the most efficient risk-sharing arrangement. There has been a controversy on the property of participating policies sold by life insurance corporations in Korea. Some scholars argue that participating policyholders of Korean life insurance companies have shared the cashflow risk with shareholders. They emphasize that insurance firms have used dividend reserves to supplement for equity deficits. Thus, they argue that the economic entities of Korean life insurance companies are mutual companies though their legal entities are corporations. Our article explicitly sets up each stakeholder's cashflow claim in stock and mutual insurers, and thus identify risk differences in shareholder and policyholder. Using our model, we could derive direct implications on the controversy. Our model shows that life insurance companies would sell participating policies since policyholders would have the incentive to share the risk inherent in their primary claims with equityholders. And there exists a fundamental difference in shareholder's risk and equityholder's.

• Journal of Korean Society of Industrial and Systems Engineering
• /
• v.40 no.3
• /
• pp.27-37
• /
• 2017

As the global uncertainty of manufacturing has increased and the quality problem has become global, the recall has become a fatal risk that determines the durability of the company. In addition, as the convergence of PSS (product-service system) product becomes common due to the development of IT convergence technology, if the function of any part of hardware or software does not operate normally, there will be a problem in the entire function of PSS product. In order to manage the quality of such PSS products in a stable manner, a new approaches is needed to analyze and manage the hardware and software parts at the same time. However, the Fishbone diagram, FTA, and FMEA, which are widely used to interpret the current quality problem, are not suitable for analyzing the quality problem by considering the hardware and software at the same time. In this paper, a quality risk assessment model combining FTA and FMEA based on defect rate to be assessed daily on site to manage quality and fishbone diagram used in group activity to solve defective problem. The proposed FTA-FMEA based risk assessment model considers the system structure characteristics of the defect factors in terms of the relationship between hardware and software, and further recognizes and manages them as risk. In order to evaluate the proposed model, we applied the functions of ITS (intelligent transportation system). It is expected that the proposed model will be more effective in assessing quality risks of PSS products because it evaluates the structural characteristics of products and causes of defects considering hardware and software together.

• Asia-Pacific Journal of Business Venturing and Entrepreneurship
• /
• v.10 no.1
• /
• pp.129-141
• /
• 2015

The mentoring program, conducted as part of an entrepreneurship education program by the Business Incubator, has been acknowledged to help entrepreneurs feel less anxious and fearful of embarking on new business endeavors and the possibility of failure and gain a positive view toward starting new businesses. For this reason, the investment into and the contents of the program have been reinforced. Accordingly, this study aims to examine the effects of mentoring functions on the improvement of the entrepreneurial mindset of young entrepreneurs and verify the moderating effect of the start-up preparation period between the mentoring functions and start-up competence as a means to analyze the interaction effect of the business start-up preparation period between the mentoring functions and entrepreneurship. For the purpose of this study, the SPSS 18.0 statistical program was used to perform validity, reliability and hierarchical factor analyses of the survey data obtained from 156 subjects, who took part in the entrepreneurship mentoring program. The results of the analyses showed that the mentoring functions had a positive impact on the progressiveness and risk-taking aspects of entrepreneurship and a negative impact on innovativeness. On the other hand, the business start-up preparation period had a significant moderating effect between the mentoring functions and the progressiveness and risk-taking aspects. Based on these results, it was deemed that while the mentoring functions efficiently improved the progressive and risk-taking characteristics of potential entrepreneurs, they were not efficient in improving their innovativeness. Also, the application of the entrepreneurship mentoring program according to the start-up preparation period had an interaction effect in which the progressiveness and risking-taking aspects of entrepreneurship were improved. Based on these findings, a proposal was made in regard to the development of a tailored mentoring program that reflects the various characteristics of the entrepreneurs and their start-up preparation periods as a means to improve their entrepreneurial mindset.

• Journal of Korean Society for Quality Management
• /
• v.47 no.1
• /
• pp.97-108
• /
• 2019

Purpose: The purpose of this study is to propose a new Risk Priority Number(RPN) evaluation method which analyzes value of product functions by mining customer opinions in Social Network Service(SNS). Methods: A traditional RPN is measured by three evaluation standards (Severity, Occurrence, Detection) which are analyzed by manufacturing engineers and researchers. On the other hand, these standards are analyzed by customers' viewpoints through SNS opinion mining in this research. In order to extract customer feedbacks from textual data sets, the methodology in this paper implies natural language processing, hereby collecting product related data sets and analyzing the opinions automatically. An emotional polarity of an opinion indicates severity, while the number of negative opinion shows occurrence, and the entire number of customer opinion refers to detection. Results: The results of this study are as follows; As a result of the CRPN evaluation, it is confirmed that the features evaluated as risky are highly likely to be improved in the next series. Therefore, CRPN is an effective risk assessment model that reflects customer feedback. Conclusion: Reflecting customer feedback is a useful tool for risk assessment of the product as well as for developing new products and improving existing products.

• Journal of Computing Science and Engineering
• /
• v.8 no.2
• /
• pp.87-93
• /
• 2014

Coronary artery disease (CAD) is currently a prevalent disease from which many people suffer. Early detection and treatment could reduce the risk of heart attack. Currently, the golden standard for the diagnosis of CAD is angiography, which is an invasive procedure. In this article, we propose an algorithm that uses data mining techniques, a fuzzy expert system, and the imperialist competitive algorithm (ICA), to make CAD diagnosis by a non-invasive procedure. The ICA is used to adjust the fuzzy membership functions. The proposed method has been evaluated with the Cleveland and Hungarian datasets. The advantage of this method, compared with others, is the interpretability. The accuracy of the proposed method is 94.92% by 11 rules, and the average length of 4. To compare the colonial competitive algorithm with other metaheuristic algorithms, the proposed method has been implemented with the particle swarm optimization (PSO) algorithm. The results indicate that the colonial competition algorithm is more efficient than the PSO algorithm.

• Proceedings of the KSR Conference
• /
• 2008.06a
• /
• pp.671-675
• /
• 2008

Railway signal system is responsible for the safety operation of railway and performs vital functions as safe space control, route control and etc. These functions prevent collision accidents between trains and derailment accidents of trains. However, these accidents are occurred by some causes. It is necessary to analysis hazards, hazard frequency and risk contribution. And railway signal system must make practical application of the analysis results. This paper includes analysis results of railway accident data by FTA(Fault Tree Analysis) and hazards. Railway signal system must consider these hazards. This paper used the railway accident data of RSSB(Railway Safety & Standard Board) of UK. We will use the FTA result to set up a draft of safety criteria of railway signal system.

• International Journal of Contents
• /
• v.9 no.3
• /
• pp.62-66
• /
• 2013

Insulin resistance is a risk factor for stroke or recurrent stroke. Sedentary behavior increases insulin resistance. This study aimed to identify the relationship between physical impairments and functions and insulin resistance, examining which physical impairments specifically influence insulin resistance the most. The subjects of this study were 63 stroke patients. The subject's insulin resistance and physical impairments and functions were measured using the Chedoke-McMaster Stroke Assessment (CMSA) and Stroke Impairment Assessment Set (SIAS). The study results exhibited that insulin resistance is statistically significantly related to the variable of foot according to the CMSA(r=.95, p<.05) and to the variable of lower extremity sensory function (touch) in relation to the SIAS(r=.91, p<.05). This study also revealed close correlations between insulin resistance and the variables of ankle control(${\beta}=-1.05$, p<.05) and low extremity tactile sensations(${\beta}=-1.82$, p<.05).