Title |
Security Vulnerability Management Measures for Major Information and Communication Infrastructure using VMS |
Authors |
최재현(Jaehyun Choi) ; 이후진(Hoojin Lee) |
DOI |
https://doi.org/10.5573/ieie.2020.57.6.37 |
Keywords |
Security Vulnerability; Vulnerability Management System (VMS); Infrastructure; Business Continuity |
Abstract |
The government is gradually improving the security vulnerabilities of the infrastructure by conducting vulnerability analysis and evaluation in order to secure the safety and reliability of the major information and communication infrastructure and establishing and implementing an implementation plan with necessary supplementary measures for the results. However, the vulnerability analysis and evaluation detailed guide, which is being used to analyze and evaluate infrastructure vulnerabilities, has not been updated since 2017, and management problems have also frequently occurred due to frequent changes in infrastructure managers. In this regard, it was intended to grasp the grievances of the person in charge of infrastructure information protection and to draw up management problems, and to propose ways to improve the technical and managerial tasks of major information and communication infrastructure through the vulnerability management system (VMS) presented in this paper. Unlike the previous ones where the vulnerability check was carried out manually, the work of the person in charge was reduced by converting it to a batch file and performing the check. It was difficult to secure continuity of work due to frequent changes in the personnel in charge due to the circular work system of public institutions, etc., but non-experts were also able to easily identify their work through the vulnerability management system, and the plan was to improve the management of infrastructure by securing reduction of work and continuity. |