• Korean System Dynamics Review
• /
• v.4 no.2
• /
• pp.5-44
• /
• 2003

The focus of this paper is comparing relative effects of government policies for upbringing information security industry from the dynamic point of view. For the purpose of simplicity, these policies are classified into three groups, and then the relative effectiveness of these policy groups is examined using System Dynamics. The three policy groups are composed of technology development policies (TDP), human resource development policies (HDP), and direct supporting policies for overseas expansion (DSP). From the result of the analysis, DSP appears to be the most effective and HDP is the second-best group. By the way, for successful carrying into effect of DSP, marketing manpower should be strengthen. However, current HDP has been focusing on the bringing up technical experts. Therefore, overseas marketing manpower should be reared as well as technicians. Also, the existing infrastructure for overseas expansion for other industries should be shared for DSP of information security industry, because this is essential for success of DSP in terms of timing and costing. Finally, in spite of its low effect, TDP should be maintained continuously. The importance of information security technology is increasing and some countries have already considered these technologies as a core of future national defense. Therefore, we should acquire the competitiveness for a few technologies through continuous development of selected technologies at least.

• The Korean Journal of Air & Space Law and Policy
• /
• no.spc
• /
• pp.247-270
• /
• 2007

Space development and utilization must be conducted within a framework of "peaceful uses" principle under Space Treaty. Japan ratified the treaty in 1967, and interpreted "peaceful uses" as "non-military uses" then. A ghost of "peaceful uses" principle has been hung over Japan up to the moment. Japan's space development and utilization has been conducted with genuine academic interest, and therefore Japan did not introduce space infrastructures to national security policy and did not facilitate growth of space industry. When the Cold War ended, Northeast Asian security environment makes Japan difficult to maintain an interpretation as "non-military uses". Besides the change of external security environment, the domestic industry situation and a series of rocket launching failure needed reexamination of Japan's space policy. Japan is gradually changing its space policy, and introducing space infrastructure in a national security policy under a "generalization" theory that gave a broad interpretation of "peaceful uses" principle. Council for Science and Technology Policy (CSTP) adopted a basic strategy of Japan's space policy in 2004. Since then, a long-term report of Japan Aerospace Exploration Agency (JAXA), an investigation report of Society of Japanese Aerospace Companies (SJAC) and a proposal of Japan Business Federation (JSF) were followed. Japan will promote space development and utilization in national security policy with a "strictly defensive defense" strategy and "non-aggressive uses"principle for protection of life and property of Japanese people and stabilization of East Asian countries.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.23 no.3
• /
• pp.471-478
• /
• 2013

Industrial control system was designed mainly in the form of analog in early days. However, necessity of digital system engineering is increasing recently because systems become complicated. Consequently, stability of digital systems is improved so most industrial control systems are designed with digital. Because Using digital design of Industrial control system is expanded, various threatening possibilities such as penetration or destruction of systems are increasing enormously. Domestic and overseas researchers accordingly make a multilateral effort into risk analysis and preparing countermeasures. In this paper, this report chooses common security requirement in industrial control system and nuclear control system through relevant guidelines analysis. In addition, this report suggests the development plan of nuclear cyber security system which will be an essential ingredient of planning approvals.

• Asia pacific journal of information systems
• /
• v.15 no.1
• /
• pp.115-133
• /
• 2005

This study is to develop an information security management model(ISMM) for small and medium sized enterprises(SMEs). Based on extensive literature review, a five-pillar twelve-component reference ISMM is developed. The five pillars of SME's information security are: centralized decision making, ease of management, flexibility, agility and expandability. Twelve components are: scope & organization, security policy, resource assessment, risk assessment, implementation planning, control development, awareness training, monitoring, change management, auditing, maintenance and accident management. Subsequent survey designed and administered to expose experts' perception on the importance of these twelve components revealed that five out of tweleve components require relatively immediate attention than others, especially in SME's context. These five components are: scope and organization, resource assessment, auditing, change management, and incident management. Other seven components are policy, risk assessment, implementation planning, control development, awareness training, monitoring, and maintenance. It seems that resource limitation of SMEs directs their attention to ISMM activities that may not require a lot of resources. On the basis of these findings, a three-phase approach is developed and proposed here as an SME ISMM. Three phases are (1) foundation and promotion, (2) management and expansion, and (3) maturity. Implications of the model are discussed and suggestions are made for further research.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.13 no.6
• /
• pp.3-15
• /
• 2003

This study aims at the development of new curricula for information security department at colleges. For this purpose, the curricula for information security of the seven colleges in Korea were first examined. Then, questionnaires from the fifteen information security companies and professors were put into place. With these results, a new curricula for the information security department was developed. A curriculum that developed in this study will also provide changes and improvements for the future curricula of information suity department at colleges in Korea.

• East Asian Journal of Business Economics (EAJBE)
• /
• v.9 no.2
• /
• pp.1-10
• /
• 2021

Purpose - The purpose of this study is to measure the efficiency of social security expenditure in 31 provinces, cities and autonomous regions in China and proposes corresponding improvement plans. Research design, data, and methodology - The data were obtained from the statistical yearbook of each province. The BCC and CCR models of DEA model and Malmquist index are used to analyze the efficiency, and the input-output index is expanded. Result - The results show that the social security performance of the Chinese government has improved on the whole despite the unbalanced development in different regions. Each region should look for strategies to improve the efficiency of social security according to its own problems. The study suggests that provinces affected by TCI should improve their internal environment, such as raising social security fund structure and strengthening fund supervision, to improve efficiency. Areas affected by TECI need to be more responsive to policy, socio-economic and technological development. Conclusion - The research conclusion can provide reference for Chinese provinces to improve the efficiency of social security expenditure in the future. This study is not comprehensive enough in the selection of input-output indicators, which can be further expanded in the future.

• International Journal of Computer Science & Network Security
• /
• v.22 no.7
• /
• pp.117-122
• /
• 2022

The main purpose of the article is to determine the economic consequences of the impact of war on labor resources and tourism in terms of ensuring economic security. Today, in the context of Russia's invasion of the territory of Ukraine, an important aspect of people's lives is confidence in their safety. But no less important is the provision of economic security, its impact on the labor and tourism aspects of this type of security, the negative impact on which is carried out under the influence of war. Modern society is faced with the same problems that were a hundred years ago: technological progress, the balance of power in the world community, social problems, military conflicts. In the modern development of society, no one can deny the amazing scientific progress in new technologies and communications.That is why it is important to understand how dangerous war is not only for human life, but also for the economy of the state, its labor and tourism aspects.

• Korean Security Journal
• /
• no.40
• /
• pp.175-207
• /
• 2014

This paper focuses on the study of a development direction of the industrial security Expert system. First of all, in order to manage Industrial security system, we need to have law, criminology, business and engineering professionals as well as IT experts, which are the multi-dimensional convergence professionals. Secondly, industrial organizations need to have workforce who can perform security strategy; security plan; security training; security services; or security system management and operations. Industrial security certification system can contribute to cultivate above mentioned professional workforce. Currently Industrial Security Expert(ISE) is a private qualification. However, the author argued that it have to be changed to national qualification. In addition, it is necessary that the system should be given credibility with verifying the personnel whether they are proper or not in the their field. In terms of quality innovation, it is also necessary that distinguish the levels of utilization of rating system of the industrial security coordinator through a long-term examination. With respect to grading criteria, we could consider the requirements as following: whether they must hold the degree of the industrial security-related areas of undergraduate or postgraduate (or to be); what or how many industrial security-related courses they should complete through a credit bank system. If the plan of completing certain industrial security-related credits simply through the credit bank system, without establishing a new industrial security-related department, has established, then industrial security study would be spreaded and advanced. For private certification holders, the problem of the qualification succeeding process is important matter. Additionally, it is necessary to introduce the certifying system of ISMS(Industrial Security Management System) which is a specialized system for protecting industrial technology. To sum up, when the industrial security management system links the industrial security management certification, industrial security would realize in the companies and research institutions dealing with national key technology. Then, a group synergy effect would occurs.

• 한국경호경비학회:학술대회논문집
• /
• 2008.11a
• /
• pp.9-16
• /
• 2008

• Convergence Security Journal
• /
• v.14 no.4
• /
• pp.73-84
• /
• 2014

As the society turns into more of an information an technology centric society, the importance of information security is being increased these days. Recently, as the number of leaking accidents of personal information and valuable industrial technology is on the rise, every field of industry endeavors to come up with a security solution. In particular, since defense industry is a field where it establishes national defense power that is essential of national security, it requires higher standards of security solutions than any other ordinary fields of industry. According to Defense Industry Security Work Instructions, defense industry firms from security organizations and employ a security worker corresponding to the firm's scale and conditions. In an environment where essential information and technology are stored and managed in information and communication system or storing media, the duty and role of IT security workers are crucial. However, there is a shortage of systematic analysis on the work of IT security workers and development of curriculum to enhance their professionalism. Thus DACUM process, a job analysis technique, was used to identify IT Security workers' duties and responsibilities and verify the validity and credibility of the deducted results from the survey. The findings of this study will help in development of IT security duty in defense industry and can be used as baseline data for the development of curriculum and amendments of related regulations.