한국 군 환경에 적합한 소프트웨어 공급망 위험 관리 정책 및 기술에 관한 연구

Vol. 35, No. 1, pp. 135-155, 2월. 2025
10.13089/JKIISC.2025.35.1.135, Full Text:
Keywords: Supply Chain, risk management, SCRM, cybersecurity, Military
Abstract

Supply Chain Risk Management(SCRM) involves managing the risks that exist throughout the process of delivering products from producers to end consumers, ensuring that the products meet the consumers' requirements safely. In the software domain, attacks on the supply chain can be carried out more easily compared to other industries, and their impact can spread rapidly. To manage the risks present in the supply chain, various organizations, including the U.S. National Institute of Standards and Technology(NIST), and other nations operate SCRM frameworks. This study analyzes existing frameworks and research on SCRM and proposes a framework suitable for the Korean military environment. Additionally, a case study is conducted and feedback is gathered from employees working in cyber risk management positions within the military and defense industry professionals to assess the appropriateness and practical applicability of the proposed framework.

Statistics
Show / Hide Statistics

Statistics (Cumulative Counts from December 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article
[IEEE Style]
안정근 and 김승주, "A Study on Software Supply Chain Risk Management Policies and Techniques Suitable for Korean Military Environment," Journal of The Korea Institute of Information Security and Cryptology, vol. 35, no. 1, pp. 135-155, 2025. DOI: 10.13089/JKIISC.2025.35.1.135.

[ACM Style]
안정근 and 김승주. 2025. A Study on Software Supply Chain Risk Management Policies and Techniques Suitable for Korean Military Environment. Journal of The Korea Institute of Information Security and Cryptology, 35, 1, (2025), 135-155. DOI: 10.13089/JKIISC.2025.35.1.135.