시큐어 코딩(Secure Coding) 쪼개기

Now is the era of development using AI. To create better, more accurate code and documents by better utilizing AI, methods are needed, so we propose suitable ones.

What should be done when building a generative AI or LLM-based RAG (Retrieval-Augmented Generation) system, but the desired performance isn't achieved and there's no suitable solution? This lecture presents methods to improve RAG performance based on Cognitive Load theory. Through this lecture, you will understand the limitations of LLM context windows and learn how to effectively manage cognitive load in RAG systems. It is a practical-level theoretical lecture covering Chunk size and structure design, high-quality Chunk generation techniques, dynamic optimization, performance evaluation, and practical techniques.

This enables junior developers to understand the entire development process from planning to code writing, deployment, and validation by using artificial intelligence as a development tool, allowing them to survive and thrive in the AI era by acquiring the full-spectrum capabilities needed.

Explains the basic principles of large language models like ChatGPT, focusing on theory.

Describes the need for LLM, its technical background, and basic concepts.

We create an AI judge by combining CrewAI, facilitating LLM-based multi-agent technology, with knowledge graphs and inference systems.

You can quickly understand C language's basic concepts and grammar.

This course is a systematic learning process for prompt engineering, which is a core technology for effectively utilizing large language models (LLMs) or generative artificial intelligence. It covers a wide range of topics from basic theory to practical techniques, as well as the latest application cases and security/ethical issues, providing practical help to LLM-based service developers, data scientists, and AI planners alike.

Problematization (문제화) is a term also translated as problem posing, problem framing, problem setting, or problem definition. This concept involves questioning known facts (like requests or common sense) from a new perspective, defining the problem, and devising methods to solve it. Problematization should be the starting point for all development, yet it remains insufficiently discussed within the field. Performing projects or developing programs is, in essence, planning to solve problems. This means they are related to problematization. To solve a problem, it must first be clearly defined. However, problems are mostly presented as vague requests. Therefore, the ability to transform vague requests into clear problems is essential to reduce unnecessary 'development waste,' facilitate smooth collaboration, and accurately grasp users' true needs. This lecture helps train 'the thinking of problem construction' through practical examples and tools.

You can learn the concepts and methods of 'service design' necessary when planning applications or web services based on LLMs, a type of generative artificial intelligence (generative AI).

"One name change, code transformed." "The key to readable code, 'naming for readability,' summarized from principles to examples." "Easy-to-read names begin collaboration."

👨‍🍳 Like cooking code, neatly and deliciously! 『Clean Coding』 is a code cooking class for chef-like developers, where they joyfully learn clean coding through a cooking analogy. 🍽️

Describes in detail the various language models developed from the inception of Natural Language Processing technology to the process leading up to the latest LLM models.

We will examine methods for collecting and analyzing user requirements to plan LLM services.

We explore the limitations of LLMs, methods to overcome them, and the latest research topics.

Let's explore the types of applications or web services that can be built using LLMs.

Training for obtaining ISMS-P and ISO27001/ISO27701 certifications.

Risk assessment plans for network equipment, security equipment, and control systems based on the revised major information and communication infrastructure standards for the second half of 2025, and education for vulnerability elimination through the application of years of know-how and fast and accurate inspection and improvement measures In particular, expectations for efforts to secure inspection speed and improvement plans according to the designation of ISMS-P certification and ISO27001 certification scope Experience with network equipment, security equipment, and control systems that have relatively lower accessibility compared to servers, DB, WEB, WAS, PC, and Cloud (Public, Private), making environment setup difficult

This lecture is designed to make personal information protection education interesting and ‘social engineering-based.’ Rather than covering the revisions to the Personal Information Protection Act, it focuses on real-life information protection threat cases and responses.

KCA Information Security Risk Manager (ISRM) certification course! The cornerstone for acquiring the top 3 personal information protection certifications: CPPG, ISMS-P!

Repeatedly study the 100 most frequently appearing CPPG core topics through theory, mind maps, and problem solving.

Cyber security threats are increasing every year, stealing personal information and abusing privacy. This course covers security issues and security activities that employees must know and follow in their work and personal lives.

This course systematically teaches practical Docker skills (installation→operation→automation→security) and comprehensively covers the latest security threats and countermeasures in each section. It features a hands-on approach where you learn by following along with practical exercises. This curriculum is highly recommended for DevOps engineers, infrastructure engineers, and security practitioners who want to experience the latest container/cloud environments in real-world scenarios.

Produced reflecting latest legal changes and recent exam patterns. Even without personal data knowledge, we'll explain it for easiest understanding. Trust and follow!

This course carefully selects the core systems that beginners must know in the vast field of information security. Instead of rigid theory, it's structured to help you intuitively understand system principles through clear analogies and practical examples. With this single course, you can grasp the big picture of information security systems as a whole and develop practical skills.

This lecture provides a general guide on how to prepare while studying when you want to choose a career in IT security penetration testing, and what questions and answers to prepare for the interview. I will share my experience working as a penetration testing consultant, at large companies, and in the financial sector, and currently running a penetration testing consulting business.

This is an extended Amazon EKS course covering a wide range of topics that Amazon EKS users should definitely know.

This is a course where you can learn the basics of web technology. You can learn the basics of web technology in a short period of time. If you are interested in studying or getting a job related to the web, you must take this course!

Master AWS networking completely! Learn VPC, subnet, routing, and security with a focus on practical application, and design secure and scalable cloud network architectures. Complete the core skills that every working engineer must know in a short period of time!

Want to work for a long time as a super developer who can handle the entire process of service development and operation on your own? Then build a solid foundation in IT infrastructure knowledge from the ground up, which is just as important as various development languages!

IT services are rapidly transitioning to cloud environments. You will learn security practices from basic virtual infrastructure construction to security threat monitoring and vulnerability diagnosis for each area to secure the Amazon AWS cloud environment.

This lecture is about automotive ECU cyber security based on a basic understanding of cryptography.