• Journal of Korea Society of Industrial Information Systems
• /
• v.26 no.3
• /
• pp.23-39
• /
• 2021

Investment of organization in information security is increasing, but information security threats within the organization are not decreasing. The purpose of this study is to suggest a direction to increase the information security compliance intention of employees. In detail, the study presents the positive effects of security motivation and organization trust on the information security compliance intention, and presents the moderating effect of work promotion focus. Research model and hypothesis verification are confirmed through structural equation modeling and the study conducted a questionnaire technique to the employees of the organization applying the information security policy for quantitative verification. As a result, information security punishment and value congruence had a positive affect on the compliance intention by mediating organization trust. In addition, work promotion focus had a moderating effect on the positive relationship between the precedent factors on the compliance intention. The research has academic and practical implications from the viewpoint of presenting the factors of the organization's efforts to improve the level of information security compliance by insiders.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.15 no.1
• /
• pp.240-263
• /
• 2021

One of the biggest challenges that the software industry is facing today is to create highly efficient applications without affecting the quality of healthcare system software. The demand for the provision of software with high quality protection has seen a rapid increase in the software business market. Moreover, it is worthless to offer extremely user-friendly software applications with no ideal security. Therefore a need to find optimal solutions and bridge the difference between accessibility and protection by offering accessible software services for defense has become an imminent prerequisite. Several research endeavours on usable security assessments have been performed to fill the gap between functionality and security. In this context, several Multi-Criteria Decision Making (MCDM) approaches have been implemented on different usability and security attributes so as to assess the usable-security of software systems. However, only a few specific studies are based on using the integrated approach of fuzzy Analytic Network Process (FANP) and Technique for Order of Preference by Similarity to Ideal Solution (TOPSIS) technique for assessing the significant usable-security of hospital management software. Therefore, in this research study, the authors have employed an integrated methodology of fuzzy logic, ANP and TOPSIS to estimate the usable - security of Hospital Management System Software. For the intended objective, the study has taken into account 5 usable-security factors at first tier and 16 sub-factors at second tier with 6 hospital management system softwares as alternative solutions. To measure the weights of parameters and their relation with each other, Fuzzy ANP is implemented. Thereafter, Fuzzy TOPSIS methodology was employed and the rating of alternatives was calculated on the foundation of the proximity to the positive ideal solution.

• The Journal of the Korea institute of electronic communication sciences
• /
• v.17 no.1
• /
• pp.1-12
• /
• 2022

An insider's information security incidents continue to occur, there is a growing demand for strengthening information security within the organization. However, when strict information security policies and rules are applied to employees of the organization, it can result as an information security stress and resistance behavior. The purpose of this study is to suggest the causes of insiders' negative information security behavior and factors that mitigate the cause. In particular, the study identifies how the mutual influence of individual (psychological empowerment) and organizational (justice climate) factors mitigates negative behavior. In this study, a sample was obtained by surveying workers of organizations that reflect information security policies to insiders, and hypothesis testing was performed by structural equation modeling. As a result of the analysis, role stress had a partial mediating effect on the effect of psychological empowerment on security policy resistance, and the justice climate strengthened the effect of psychological empowerment. Our results suggest a direction for reducing insider information security policy resistance, so it helps to establish a strategy for achieving internal information security goals.

• Korean Security Journal
• /
• no.13
• /
• pp.383-402
• /
• 2007

World security market has continuously been growing since the 2000s. The growth rate seems to reach up to 7-8% annually. What is more, Korea is expected to be one of the most rapidly developing markets, Based of this view, this research investigates the principal drivers to have affected on the expansion of Korean security market over the past 20 years. In addition to that, this study also examines the influence of recent changes in the world economy and globalization, socio-demographic change, development of information technology on the future security market. The data reviewed in this study are official crime rates, socio-economic indicators, statistics from the National Police Agency and the business reports of a leading private security company. This study shows that several factors such as rising crime rates, lack of police capacities, national economic growth and rising household income have played important roles in development of Korean market. It is also expected to keep those positive affects on the future market. On the other side, in recent years, the security market seems to be increasingly affected by new social economic changes. Those are impact of last aging society, rapid increase of individual household and women's participation in labor market. These factors seem to increase personal and household needs for security service. World economy, globalization process and development of information technology are also deemed to give rise to social demands for surveillance, monitoring service and security in cyber space.

• Knowledge Management Research
• /
• v.22 no.4
• /
• pp.157-172
• /
• 2021

Information security companies were established in earnest from the mid-late 1990s to early 2000s, far shorter than other national key industries. Nevertheless, the information security industry has made rapid progress. It is expected that the proportion of the information security industry will increase rapidly with the development of advanced technology along with the 4th industrial revolution. As COVID-19, which occurred at the end of 2019, spreads around the world in 2020, non-face-to-face services and digital transformation are accelerating, and cyber threats to users are also increasing. However, there are limitations in responding to new Cyber Security threats due to the shortage of information protection manpower, insufficient security capabilities of domestic companies, and the narrow domestic information protection market. This study examines the external environmental factors of information security companies such as government information protection system operation, government influence, government support, partnership between information security companies, and internal environmental factors such as top management support, financial status, human resources, organizational capability, This study was conducted using empirical data to analyze whether it affects innovation capability and whether organizational capability and innovation capability affect financial and non-financial performance. The results of this study can be used as basic data to suggest policies and implications for information security, and to strengthen the competitiveness of the information security industry.

• Korean Journal of Rural Living Science
• /
• v.9 no.1
• /
• pp.43-54
• /
• 1998

This study attempted to investigate the factors affecting financial status of the rural middle-aged and old-aged household. The results shelved that the significant variables which influenced on the probability of financial security measured by consumption to income ratio were sex and education level of the household head, family size, total income, total expenditure and total assets. The most influential variables on the probability of financial security measured by liquidity ratio was liquid assets, and total assets. Education level of the household head. liquid assets, total assets, and total debt had significant effects on the probability of financial security estimated by debt burden ratio. Among the economic variables, only liquid asset had significant negative effects on the probability of financial security assessed by the capital stock ratio.

• Journal of the Korean Society for Aviation and Aeronautics
• /
• v.20 no.4
• /
• pp.91-105
• /
• 2012

This study, the cause of an aviation security employees' job satisfaction and dissatisfaction will be understood and the data can be used as evidence to explain the position of the employees. Moreover, the results of this study shall be conducted to increase the level of service delivery and also to remove unsatisfactory factors. Thus, according to this research survey shows the understanding of the job satisfaction and service delivery influences on the overall job satisfaction of a secure enterprise's security screeners. As a results, by improving the job satisfaction of aviation security screeners, the world's most safe, convenient service and quick airport service delivery could be achieved. Therefore, in order to improve the level of Korea and the international competitiveness of airlines, the promotion of job satisfaction of employees would be very important. Moreover based on the results of this study, the advanced research on the recognition differences for service evaluation between the customers and security screeners are needed.

• Korean Journal of Occupational Health Nursing
• /
• v.18 no.1
• /
• pp.106-115
• /
• 2009

Purpose: Occupational stress is a determinant risk factor for cardiovascular disease and work disability. This study aims to describe occupational stress and identify its related factors among aged security guards. Methods: A random sample of 76 aged security guards were interviewed by three research assistants. The criteria of the subjects were as follows : 50 or older male with 40 or more working hours a week working with colleagues ranged from 3 to 50. The data were collected in September, 2007 and analyzed by multiple regression using SAS Version 9.1. Results: The mean score of occupational stress among aged security guards was 47.2. The mean scores of its sub-scales were 31.3(physical environment), 33.8(occupational demand), 80.8occupational control), 44.6(interpersonal conflict), 51.3 (occupational insecurity), 53.6(occupational system), 57.5(lack of reward), and 30.3(work environment). The scores of occupational control, interpersonal conflict, and occupational insecurity were higher than the scores of Korean average occupational stress sub-scales. Significant variables affecting occupational stress and its sub-scales were work place, work type, and employment type. Conclusion: In order to reduce occupational stress among security guards, sufficient occupational control and interpersonal conflict control, appropriate reward, and employment stability should be considered. Also long working hours and work shift should be improved.

• Proceedings of the Korea Institutes of Information Security and Cryptology Conference
• /
• 1995.11a
• /
• pp.51-58
• /
• 1995

The importance of the risk analysis tool has been recognized and its use also has been emphasized by a number of researchers recently The methodology were examined but neither algorithms nor practical applications have been implemented or practiced in Korea. In this paper, the architecture of the Buddy System, one of the automated risk assessment tools. is analyzed in depth to provide the algorithmic understanding and to promote the development of the risk analysis methodology. The Buddy System mainly uses three main factors of vulnerability, threat and countermeasures as a nucleus of the qualatative analysis with the modified loss expectancy value. These factors are identified and assessed by the separation of duties between the end user and security analyst. The Buddy System uses five axioms as its bases of assessment algorithm and the assessed vulnerability level is strictly within these axioms. Since the In-place countermeasures reduce the vulnerability level up to a certain level. the security analyst may use "what if " model to examine the impact of additional countermeasures by proposing each to reduce the vulnerability level further to within the acceptable range. The emphasis on the qualitative approach on vulnerability leveling is very well balanced with the quantitative analysis that the system performance is prominent.prominent.

• International Journal of Advanced Culture Technology
• /
• v.9 no.2
• /
• pp.106-117
• /
• 2021

The aim is to find cyber measures in consideration of physical CPTED in order to prepare countermeasures for cybercrime prevention. For this, the six applied principles of CPTED were used as the standard. A new control item was created in connection with the control items of ISO27001. A survey was conducted on former and current investigators and security experts. As a result of the reliability analysis, the Kronbar alpha coefficient value was 0.947, indicating the reliability of the statistical value. As a result of factor analysis, it was reduced to six factors. The following are six factors and countermeasures. Nature monitoring blocks opportunities and strengthens business continuity. Access control is based on management system compliance, personnel security. Reinforcement of territoriality is reinforcement of each wife and ethics. Establishment of security policy to enhance readability, security system maintenance. Increasing usability is seeking ways to utilize, periodic incentives. For maintenance, security education is strength and security-related collective cooperation is conducted. The differentiation of this study was to find countermeasures against cybercrime in the psychological part of the past. However, they approached to find in cyber measures. The limitation of the study is to bring the concept of physical CPTED to the cyber concept.