Technical protection measures for personal information in each processing phase in the Korean public sector

Mina Shim, Seungjo Baek, Taehyoung Park, Jeongseon Seol, Jongin Lim

Research output: Contribution to journalArticle

Abstract

Personal information (hereinafter referred to as "PI") infringement has recently emerged as a serious social problem in Korea. PI infringement in the public and private sector is common. There were 182,666 cases of PI in 2,624 public organizations during the last three years. Online infringement cases have increased. PI leakage causes moral and economic damage and is an impediment to public confidence in public organizations seeking to manage e-government and maintain open and aboveboard administration. Thus, it is an important matter. Most cases of PI leakage result from unsatisfactory management of security, errors in home page design and insufficient system protection management. Protection management, such as encryption or management of access logs should be reinforced urgently. However, it is difficult to comprehend the scope of practical technology management satisfied legislation and regulations. Substantial protective countermeasures, such as access control, certification, log management and encryption need to be established. It is hard to deal with the massive leakage of PI and its security management. Therefore, in this study, we analyzed the conditions for the technical protection measures during the processing phase of PI. In addition, we classified the standard control items of protective measures suited to public circumstances. Therefore, this study provides a standard and checklist by which staff in public organizations can protect PI via technical management activities appropriate to laws and ordinances. In addition, this can lead to more detailed and clearer instructions on how to carry out technical protection measures and to evaluate the current status.

Original languageEnglish
Pages (from-to)548-574
Number of pages27
JournalKSII Transactions on Internet and Information Systems
Volume3
Issue number5
DOIs
Publication statusPublished - 2009

Keywords

  • Information security management
  • PET
  • PIA
  • Personal information protection

ASJC Scopus subject areas

  • Information Systems
  • Computer Networks and Communications

Fingerprint Dive into the research topics of 'Technical protection measures for personal information in each processing phase in the Korean public sector'. Together they form a unique fingerprint.

  • Cite this