• Journal of Korean Society of Industrial and Systems Engineering
• /
• v.29 no.1
• /
• pp.101-108
• /
• 2006

The issue of using information system to ensure competitive power in the market is rising. The outsourcing methods that entrust activities of information system of companies to other expert agencies are increasing as the enterprises make a lot of efforts to put their resources to their heart of business in the process of adopting information system. Recently, ASP(Application Service Provider) as a new information technology outsourcing method appears due to the development of network technology and spreading of peculating software. ASP defines as a software leasing service which is supplied through networks instead of purchasing application software with high price. For successful implementation of ASP, it is necessary to develop a certification program to ensure safety and reliability of ASP. This paper provides the safe and reliable certification program for ASP. In order to develop it, the critical issues related to service quality and certification of ASP are identified and then evaluation methodology for the ASP certification program is proposed. This paper presents service provider(service environment) certification as the part of the ASP certification program.

• IE interfaces
• /
• v.19 no.1
• /
• pp.62-69
• /
• 2006

In these days companies are rapidly implementing the extended enterprise collaboration to provide enhanced management services and products based on the enterprise integration that human resources, technologies and the management process. In this corporate environment, ASP (Application Service Provider) which is the developed type of outsourcing in the area of information technology, is a good alternative for corporate information system management. ASP defines as a software leasing service which is supplied through networks instead of purchasing application software with high price. For successful implementation of ASP, it is necessary to develop the certification methodology to ensure safety and reliability of ASP. The paper provides the safe and reliable certification methodology for ASP. In order to develop it, the critical issues related to service quality and certification of ASP are identified and the systematic certification methodology of application and service provider(service environment) domains of ASP are provided. A evaluation method for the developed certification methodology is also proposed.

• Journal of the Korea Safety Management & Science
• /
• v.7 no.3
• /
• pp.97-108
• /
• 2005

The issue of using information system to ensure competitive power in the market is rising. The outsourcing methods that entrust activities of information system of companies to other expert agencies are increasing as the enterprises make a lot of efforts to put their resources to their heart of business in the process of adopting information system. Recently, ASP (Application Service Provider) as new information technology outsourcing method appears due to development of network technology and spreading of peculating software. ASP defines as a software leasing service which is supplied through networks instead of purchasing application software with high price. For successful implementation of ASP, it is necessary to develop a certification program to ensure safety and reliability of ASP. This paper provides the safe and reliable certification program for ASP. In order to develop it, the critical issues related to service quality and certification of ASP are identified and then evaluation methodology for ASP certification program is proposed. This paper presents application certification as the part of ASP certification program.

• Informatization Policy
• /
• v.18 no.1
• /
• pp.24-44
• /
• 2011

The evolution of cloud computing over the past few years is potentially one of the major advances in information technology. However, if cloud computing is to achieve its potential, there needs to be a clear identification and understanding of the various issues involved, both from the perspectives of the providers and the consumers of the technology. While a lot of research is currently taking place in the technology itself, there is an equally urgent need for understanding the business-related issues surrounding cloud computing service. As more and more information on individuals and companies are placed in the cloud service, concerns are beginning to grow about just how safe and reliable an environment it is. For successful implementation of cloud services, it is necessary to establish the certification systems to ensure the safety and reliability of cloud services. This paper provides a safe and reliable framework for cloud service certification systems. In order to develop it, the critical issues related to service quality and certification of cloud services have been identified and the systematic framework for certification systems of cloud services and service provider domains have been developed. An evaluation method for the developed certification systems is also proposed.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.23 no.6
• /
• pp.1231-1238
• /
• 2013

In the background of rapidly increasing domestic cloud service demand, worries about security and privacy incidents can hinder the promotion of cloud service industry. Thus, it is crucial that the independent 3rd party assures the reliability for using the cloud service. This paper compares several external and internal cloud service certification cases, for example CSA certification, FedRAMP certification, KCSA certification, and concludes that insufficient security and privacy controls are prevailing. As a consequence, several enhanced countermeasures by using ISO/IEC 27017, KISA's ISMS considering manageability and expertise are proposed in the cloud service certification system.

• Journal of Digital Convergence
• /
• v.10 no.10
• /
• pp.523-528
• /
• 2012

The recent appearance and evolution of cloud service including IaaS(Infrastructure as a Service), PaaS(Platform as a Service) and SaaS(Software as a Service) is potentially one of the major advances in information and communication technology. While a lot of studies are currently taking place in the technology itself, there is an equally urgent need for understanding and researching the business-related issues surrounding cloud service. As more and more individuals and companies use the cloud service, their concerns are beginning to grow about just how safe and reliable an environment it is. This paper focus on SaaS as an one of the important cloud service. For successful implementation of SaaS service, it is necessary to establish the certification systems to ensure safety and reliability of SaaS. This paper provides the safe and reliable framework for systematic SaaS certification systems. In order to develop it, the critical issues related to service quality and certification of SaaS service are identified and the systematic framework for certification systems of SaaS service and service provider domains are developed. An evaluation methodology for the developed certification systems is also proposed.

• Journal of Service Research and Studies
• /
• v.8 no.1
• /
• pp.59-72
• /
• 2018

In the perspective of service, it is important to institute certification process required by International Standard Organization (ISO) for software (SW) development process, since Information and Communication Technology (ICT) takes high portion of the Korean industry and its certification for SW is essential internationally for trade. In addition, the certification service provided by BPMN tools like ADONIS is absolutely necessary. In that perspective, this paper proposes a new approach to satisfy this kind of necessity. This approach provides the certification service for the safety of SW required at the international level in Korean industry. Furthermore, the approach can be applied to other domains beside the SW. In order to demonstrate the approach, this paper shows how to guarantee service design for certification of ECSS-E-40 of European Space Agency (ESA) with ADONIS. This paper focuses on specification and verification of SW in E-40, and the main requirement for the verification will be safety of the SW.

• Journal of Korean Society for Quality Management
• /
• v.32 no.4
• /
• pp.64-77
• /
• 2004

This paper first was focused on investigating the relative effect of each ISO 9001: 2000 certification factors on service quality and customer satisfaction in service industry. The empirical tests was conducted in service industry. The results are as follows. First, it shows that ISO 9001:2000 certification factors except requirements for quality management have a positive effect on service quality significantly. Second, it also indicates that service quality precedes customer satisfaction like other researches reported. Finally, different effects of ISO 9001:2000 certification factors on service quality are observed in the various industries.

• Journal of the Korea Safety Management & Science
• /
• v.6 no.2
• /
• pp.127-139
• /
• 2004

Web-based services have fundamentally confidential problems due to characteristics of internet environment such as anonymity. These problems are serious obstacles to grow the web-based services. The security and confidence of web-based services rely on both service provider and users' opinion. But the former has difficulty in trusting the service provider and the latter takes too long time to propagete all users after converging their opinion. Therefore it is necessary to establish the objective and confidential evaluation and certification program for web-based service. In this paper, the internal and external web-based services evaluation and certification programs are compared and analyzed. The critical factors and evaluation methodology for secure and confidential web-based service are identified. Finally, this paper provides the improvement and strategy for web-based services evaluation and certification program.

• THE INTERNATIONAL COMMERCE & LAW REVIEW
• /
• v.15
• /
• pp.211-238
• /
• 2001

This article discusses and analyses several issues regarding to the Electronic Signature and the Electronic Certification. The objects of the analyse are the each paragraphs of the Korean Electronic Signature Act of 1999 and that of the Korean Electronic Transaction Basic Act of 1999 in comparing to the paragraphs of the Electronic Signatures in Global and National Commerce Act' (E-Sign) of 2000, U.S.A. and that of the Draft UNCITRAL Model Law on Electronic Signature of 2000. The main issues discussed herein are the scope of the electronic signature, the definition of the electronic signature, permission of services to the non-authorized certification service providers, the effect of the electronic signature, the liability of the concerning parties of the electronic signature including liability of the certification service providers, that of the subscribers and that of the relying parties. This paper also discusses the problems of the possibility of issuing the electronic negotiable commercial papers, the validity of the electronic signatures done by electronic agents, the authority certificate, mutual certification of the foreign certification service providers, the permission of the electronic notary service, the problems of the consumer protection and the possibility of issuing electronic insurance policy, etc. The writer concludes by suggesting some measures that will activate the use of electronic signatures under the korean circumstances.