• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.25 no.5
• /
• pp.1027-1041
• /
• 2015

Recently, there are rapidly increasing cases of APT (Advanced Persistent Threat) attacks such as Verizon(2010), Nonghyup(2011), SK Communications(2011), and 3.20 Cyber Terror(2013), which cause leak of confidential information and tremendous damage to valuable assets without being noticed. Several anomaly detection technologies were studied to defend the APT attacks, mostly focusing on detection of obvious anomalies based on known malicious codes' signature. However, they are limited in detecting APT attacks and suffering from high false-negative detection accuracy because APT attacks consistently use zero-day vulnerabilities and have long latent period. Detecting APT attacks requires long-term analysis of data from a diverse set of sources collected over the long time, real-time analysis of the ingested data, and correlation analysis of individual attacks. However, traditional security systems lack sophisticated analytic capabilities, compute power, and agility. In this paper, we propose a Fast Data based real-time abnormal behavior detection system to overcome the traditional systems' real-time processing and analysis limitation.

• Journal of Science and Technology Studies
• /
• v.10 no.2
• /
• pp.77-105
• /
• 2010

This essay aims to look into the possibility and limit of a technological fix with the PSD (platform screen door), which was proposed as the solution of subway risk problems. Subway risk problems may be classified into five categories-on-rail accidents, in-station accidents, platform accidents, spatial risks in underground, and risks due to a crime or terror-, and the platform accidents, which happens at the interface between the rail and the station, is the most serious and prominent. The PSD is considered as an effective technical means to prevent platform accidents. However, there remains a possibility of aggravating unexpected and invisible risks. When a fire breaks out in platforms, especially at exchange stations during the rush hour, the PSD can become a "wall of outcrying", since it may act as the "safety shutter" which killed many people in the 2003 Daegu subway disaster. This is why we need to look into the limit of a technological fix with the PSD.

• Convergence Security Journal
• /
• v.1 no.1
• /
• pp.31-35
• /
• 2001

Currently if we are to make a thought to depend on our fast developing information technology, a future war is necessarily to be made a situation of a cyber information warfare. A attacker in the cyber information warfare is able to make attack a military or a civil information and communication system, especially if a attack of a hacker, a virus or a electromagnetic pulse bomb at a military C4ISR system is able to make a confusion or a interruption in military operations, they are available to attack as a real time with non restrictions of physical distance, time, weather and space. While a expenditure of carrying out the cyber information warfares is the lowest expenditure, a effect of carrying out the cyber information warfares is the greatest effect in side of a interruption of information, a confusion, a terror, a pillage and crime of the people. This paper is to introduce "weapons of cyber information warfares", "offence capability of cyber information warfares about several nations" and to propose "a cyber information warfare organization" or the future knowledge warfare. the future knowledge warfare.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.5 no.7
• /
• pp.1329-1345
• /
• 2011

After the 9.11 terror attack, lawful Interception (LI) has emerged as an important tool for anti-terrorist activity. Law enforcement agents and administrative government bodies effectively monitor suspicious target users of permanent IP-based network devices by LI in Packet Data Networks (PDNs). However, it is difficult to perform LI in monitoring migrating users from a location to another, who change their IPs due to the proliferation of portable Internet devices enabling 3G IP Multimedia Subsystems (IMS). The existing, manual handover technique in 3G IMS makes it even more difficult to continue the LI activities due to time-lag reissuance of LI authority warrants when the target users move to a new LI jurisdiction via a roaming service. Our proposed model is a seamless LI handover mechanism in 3G IMS to support mobility detection of the target users. The LI warrants are transferred to the new LI agent automatically with the target users when they move to a new LI jurisdiction. Thus, time-lag human intervention of reissuance of the LI warrants is removed and enables the LI authorities to continue monitoring. In the simulation of our proposed mechanism, the quality of lawful interception achieves a mean score of over 97.5% out of the possible 100% maximum score, whereas the quality of the existing mechanism has a mean score of 22.725%.

• Korean Security Journal
• /
• no.41
• /
• pp.213-240
• /
• 2014

How will South Korea design well-organized, open, and integrated counterterrorism system? Does this system work well in the emergent situation? These are very significant issues. It is likely that this system would give the solution. A legal basis needs to be established to have a well-organized, open, and integrated counterterrorism system. The core part of a well-organized, open, and integrated counterterrorism system is to minimize and eliminate damage caused by terror through preventiveness, preparation, action, and restoration. For having this system, they need to be divided into two section: an open one and an integration one. In this study, there will be a discussion on a new and appropriate counterterrorism system fit in South Korea a subordinate system: legal, organized, civil aspects need to be provided on the basis of an well-organized, open, and integrated counterterrorism system and an analysis on the current system of the States, England and the following implications.

• The Korean Journal of Emergency Medical Services
• /
• v.7 no.1
• /
• pp.235-246
• /
• 2003

Due to major disasters Korea has been damaged, and they caused lots of casualties: for last ten years natural disasters caused 1288 deaths including missing people; human disasters including industrial disasters brought as many as 4,512.148 casual ties (126,372 deaths with 4,385,400 injuries); and they cost 44.1 trillion property damage. However, even though major disasters have brought about tremendous human loss and property damage, Koreas National Disaster Medical System to rescue casualties is insufficient, and it has not been activated. Fortunately, through major disaster management process, the National Disaster Management System has been developed, increasing its own efficiency, and resulting in to organize an Office of Firefighting and Prevention of Disasters under the central government. Considering the value of human lives, the disaster medical part, in the U.S.A. as well as in Korea, must have an independent organization in the government, not as one sector of the government department. It will have its own organizational structure, such as disaster planning, operation, and logistics, and interact with central and local government or between local government agencies. So each agency will cooperate and supply resources interchangeably. Also, with the system of disaster management and restoration, the disaster medical system must be advanced in keeping step. Its role must be extended due to the possibility of biological terror or SARS around the world, resulting in severe casualties. Korea has the Emergency Medical Service System based on the regulation of emergency medical care, yet it is a part of the National Disaster Management System. It must be managed independently apart from it. As we see the emergency medical technicians playing as the backbone in disaster medical care in the US, we should have legal foundations for Koreas emergency medical technicians, emergency medical providers, to participate in rescue operation actively. At the same time, we need to have a national register system to classify disaster medical resources, and a total plan to place resources according to the impact of disaster, and how to organize teams. We also need to draw up a scheme to activate civil disaster medical resources, as integrating public and private or voluntary organizations.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.23 no.2
• /
• pp.319-328
• /
• 2013

Considerable number of major countries have put great efforts to leverage the efficiency of power consumption using Smart Grid in order to resolve the critical issues with drastical growing demands regarding electricity, the crisis of environmental pollution and so on. There has been increasing number of researches to construct Smart Grid in Korea as well. The threats of cyber terror attacks which might cause national crisises in terms of economy and society have been climbing up because of the fact that Smart Grid employs bi-directional communications embedding the cyber threats from existing/legacy communication networks. Consequently, it is required to build concrete response processes including investigation and analysis on cyber breaches into Smart Grid. However, the digital evidence acquisition techniques do not suffice to be deployed in Smart Grid systems despite of the fact that the techniques, against cyber breaches into well-known networks, have been studied in plenty of time. This work proposes a novel digital evidence acquisition scheme appropriate to Smart Grid systems through intensive investigation of the evidence acquisition requirements in Smart Grid and the historical evidence acquisition methods.

• Korea and Global Affairs
• /
• v.1 no.1
• /
• pp.97-114
• /
• 2017

This article aims for searching the clue of North Korea nuke-problem by understanding it contextually. We must see this from the beginning as many trials in settling the problem have failed. North Korea nuke-problem is related to the change of international implication as well as the domestic process of its development. At first, it started from the regime survival, which evolved with the effect of learning. During the Cold War, its development had combined the principle of 'self-defense' because of Sino-Russia conflict. Particularly, its meaning varied dramatically due to the collapse of Cold War system plus the advent of post-Cold War system. North Korea nuclear program has became a global problem based on the deterioration of North Korea's security milieu and Bush administration's policy. Therefore, the area of common solution for NK nuke-problem must be found in the context of regime survival and the change of its meaning by continual convergence effort.

• The Journal of the Korea Contents Association
• /
• v.17 no.11
• /
• pp.102-109
• /
• 2017

The Nation's Constitution stipulates that the nation should strive to prevent disasters and protect the public from harm. That is, the nation is a protector of the protection of people's lives and property from potential danger. The disasters are the most important global issues, and disasters scope are not confined to natural disasters such as pre-existing earthquakes, landslides, floods, fires and fires extend to cyber terror and disease. In the age of IoT and ability of analyze big data, the establishment of a disaster prevention service system in modern society is a priority for the nation. In this study, we will explore the disaster prevention services for each country using IoT technology. Based on the research, it is believed that it will be the foundation for establishing strategies for service system of disasters using IoT technology.

• Clinical and Experimental Pediatrics
• /
• v.60 no.5
• /
• pp.158-165
• /
• 2017

Purpose: To investigate the frequency of childhood sleep problems at pediatric clinics in Seoul and Gyeonggi provinces. Methods: Children (n=936) and their parents who visited 5 primary and 1 secondary pediatric outpatient clinics were invited to complete a Pediatric Sleep Questionnaire. Results: Among patients, 901 (96.3%) answered questionnaires in sufficient detail for evaluation. The participant's mean age was $4.35{\pm}3.02years$ (range, 0-18 years). The male to female ratio was 1:0.93 (466 boys, 435 girls). Habitual snoring (>3 day/week) was reported in 16.9% of the participants. The prevalence of habitual snoring in children <2 years and those between 2-5 years was 9% and 18%, respectively. Sleep disordered breathing was found in 15.1% (106 of 700) of children >2 years. Insomnia was reported in 13.2% of children. The prevalence of sleepwalking, night terrors, and bruxism, is 1.6%, 19%, and 21.1%, respectively. Snoring was associated with increased incidence of sleepwalking, night terrors, and bruxism. Age was associated with insomnia and habitual snoring (P<0.05). Insomnia was more prevalent in younger (21%) than in older children (6%). Snoring was more frequent in both preschool (34%) and school-aged children (33%). The frequency of sleep disordered breathing and insomnia did not vary significantly with gender. However, snoring was more prevalent in boys. Conclusion: Sleep problems are frequent among children in Korea. Children with snoring have an increased risk of sleepwalking, night terror, and bruxism. Primary clinicians should consider children's sleep habits to improve their health.