专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20110154492A1 MALICIOUS TRAFFIC ISOLATION SYSTEM AND METHOD USING BOTNET INFORMATION 审中-公开
标题翻译：恶性交通隔离系统和使用BOTNET信息的方法
公开(公告)号：US20110154492A1
公开(公告)日：2011-06-23
申请号：US12821549
申请日：2010-06-23
申请人： Hyun Cheol Jeong , Chae Tae Im , Seung Goo Ji , Joo Hyung Oh , Dong Wan Kang , Tae Jin Lee , Yong Geun Won
发明人： Hyun Cheol Jeong , Chae Tae Im , Seung Goo Ji , Joo Hyung Oh , Dong Wan Kang , Tae Jin Lee , Yong Geun Won
IPC分类号： G06F21/00
CPC分类号： H04L63/1416 , H04L63/0236 , H04L63/1441 , H04L2463/144
摘要： The present invention relates to a malicious traffic isolation system and method using botnet information, and more particularly, to a malicious traffic isolation system and method using botnet information, in which traffics for a set of clients having the same destination are routed to the isolation system based on a destination IP/Port, and botnet traffics are isolated using botnet information based on similarity among groups of the routed and flowed in traffics. The present invention may provide a malicious traffic isolation method using botnet information, which can accommodate traffics received from a PC or a C&C server infected with a bot into a quarantine area, isolate traffics generated by normal users from traffics transmitted from malicious bots, and block the malicious traffics. In addition, the present invention may provide a malicious traffic isolation method using botnet information, which can provide a function of mitigating DDoS attacks of a botnet.
摘要翻译：本发明涉及使用僵尸网络信息的恶意流量隔离系统和方法，更具体地，涉及使用僵尸网络信息的恶意流量隔离系统和方法，其中具有相同目的地的一组客户端的流量被路由到隔离系统基于目的地IP /端口，并且使用基于路由和流量在业务中的组之间的相似性的僵尸网络信息来分离僵尸网络流量。本发明可以提供一种使用僵尸网络信息的恶意流量隔离方法，其可以将从被感染机器人的PC或C＆C服务器接收到的流量容纳到隔离区域，从而将普通用户生成的流量与恶意机器人传输的流量隔离，并阻止恶意的流量。另外，本发明可以提供使用僵尸网络信息的恶意流量隔离方法，其可以提供减轻僵尸网络的DDoS攻击的功能。

2. 发明授权

US07864961B2 Method of managing a mobile multicast key using a foreign group key 有权
标题翻译：使用外部组密钥管理移动组播密钥的方法
公开(公告)号：US07864961B2
公开(公告)日：2011-01-04
申请号：US11941437
申请日：2007-11-16
申请人： Yoo Jae Won , Mi Youn Yoon , Seung Goo Ji , Kyu Cheol Oh
发明人： Yoo Jae Won , Mi Youn Yoon , Seung Goo Ji , Kyu Cheol Oh
IPC分类号： H04L9/00
CPC分类号： H04L9/0833 , H04L9/0891 , H04L63/065 , H04L2209/60 , H04L2209/80
摘要： The present invention relates to a method of managing a mobile multicast key using a foreign key. More specifically, the present invention relates to a method of managing a mobile multicast key using a foreign key for secure communication between a mobile terminal and a secure relay server in the region where microwaves from plural access points overlap. A method of managing a mobile multicast key using a foreign key according to the present invention has an advantage that multicast secure relay servers perform delegated authentication in advance in a region where microwaves overlap, thus reducing a delay time for authentication in a mobile terminal and it has an advantage that it can minimize an effect from changes in group keys that user's movement make, by using a primary group key and a foreign key. This results in a reduction of an overhead from update of a group key while moving, and accordingly a reduction of a delay time. In addition, it has an advantage that it centralizes functions of key management to a secure relay server, thus overcoming the limitations on processing ability or network bandwidth of a mobile terminal.
摘要翻译：本发明涉及使用外键管理移动多播密钥的方法。更具体地，本发明涉及一种使用外键管理移动多播密钥的方法，所述外键用于来自多个接入点的微波重叠的区域中的移动终端与安全中继服务器之间的安全通信。根据本发明的使用外键管理移动多播密钥的方法具有组播安全中继服务器在微波重叠的区域中预先执行委托认证的优点，从而减少移动终端中的认证的延迟时间，有一个优点是可以通过使用主组密钥和外键来最小化用户移动所产生的组密钥更改的影响。这导致在移动时减少组密钥更新的开销，并因此减少延迟时间。此外，它具有将密钥管理的功能集中到安全中继服务器的优点，从而克服了移动终端的处理能力或网络带宽的限制。

3. 发明申请

US20130179421A1 System and Method for Collecting URL Information Using Retrieval Service of Social Network Service 审中-公开
标题翻译：使用社会网络服务检索服务收集URL信息的系统和方法
公开(公告)号：US20130179421A1
公开(公告)日：2013-07-11
申请号：US13676599
申请日：2012-11-14
申请人： Hyun Cheol Jeong , Seung Goo Ji , Tai Jin Lee , Jong Il Jeong , Hong Koo Kang , Byung Ik Kim
发明人： Hyun Cheol Jeong , Seung Goo Ji , Tai Jin Lee , Jong Il Jeong , Hong Koo Kang , Byung Ik Kim
IPC分类号： G06F17/30
CPC分类号： G06F16/9558 , G06F21/51 , H04L63/1441 , H04L63/168
摘要： A system and method for collecting a URL using a retrieval service of an SNS capable of accurately and effectively extracting and collecting information including a malicious code among information exchanged in an SNS are provided. URL information included in post (a bulletin script, a message, a note, or the like) exchanged in an SNS based on real-time search word information is extracted and collected to be utilized for collecting a malicious code in the SNS, whereby generation of a malicious code in the SNS can be prevented in advance, and thus, damage to users due to infection of a malicious code can be significantly reduced. In addition, the URL information can be effectively collected through crawling.
摘要翻译：提供了一种使用SNS的检索服务收集URL的系统和方法，其能够在SNS中交换的信息中准确有效地提取和收集包括恶意代码的信息。提取并收集在SNS中基于实时搜索词信息交换的post（公告脚本，消息，注释等）中包含的URL信息，以收集SNS中的恶意代码，从而生成可以预先防止SNS中的恶意代码，从而可以显着降低由于恶意代码的感染而对用户造成的损害。此外，通过抓取可以有效地收集URL信息。

4. 发明申请

US20120311709A1 AUTOMATIC MANAGEMENT SYSTEM FOR GROUP AND MUTANT INFORMATION OF MALICIOUS CODES 审中-公开
标题翻译：自动管理系统，用于组合和错误信息的恶意代码
公开(公告)号：US20120311709A1
公开(公告)日：2012-12-06
申请号：US13304981
申请日：2011-11-28
申请人： Hong-Koo Kang , Chae-Tae Im , Joo-Hyung Oh , Jong-Il Jeong , Jin-Kyung Lee , Byoung-Ik Kim , Hyun-Cheol Jeong , Seung-Goo Ji , Tai-Jin Lee
发明人： Hong-Koo Kang , Chae-Tae Im , Joo-Hyung Oh , Jong-Il Jeong , Jin-Kyung Lee , Byoung-Ik Kim , Hyun-Cheol Jeong , Seung-Goo Ji , Tai-Jin Lee
IPC分类号： G06F21/00
CPC分类号： G06F21/56 , G06F8/75
摘要： An automatic management system includes a malicious code group-mutant storage module that receives a malicious codes analysis result from a malicious code collection-analysis system and extracts group information and mutant information of the malicious codes based on the malicious code analysis result, a malicious code group-mutant DB that stores the extracted group information and mutant information, a malicious code group-mutant management module that provides interface to allow a user to detect the group information and mutant information stored in the malicious code group-mutant DB, and a visualizing module that outputs the detection result to the user, wherein the malicious code group-mutant management module that groups malicious codes having action associations using the group information and mutant information stored in the malicious code group-mutant DB, outputs the group information through the visualizing module and outputs the mutant information based on CFG similarity and string similarity through the visualizing module.
摘要翻译：自动管理系统包括恶意代码组 - 突变存储模块，其从恶意代码收集分析系统接收恶意代码分析结果，并基于恶意代码分析结果提取恶意代码的组信息和突变信息，恶意代码存储提取的组信息和突变体信息的组突变体DB，恶意代码组突变体管理模块，其提供接口以允许用户检测存储在恶意代码组突变体DB中的组信息和突变信息，以及可视化向用户输出检测结果的模块，其中，使用存储在恶意代码组突变体DB中的组信息和突变信息分组具有动作关联的恶意代码的恶意代码组突变体管理模块通过可视化输出组信息模块并输出基于CFG相似度的突变信息通过可视化模块进行字符串相似。

5. 发明申请

US20080123856A1 Method of Managing a Mobile Multicast Key Using a Foreign Group Key 有权
标题翻译：使用外部组密钥管理移动组播密钥的方法
公开(公告)号：US20080123856A1
公开(公告)日：2008-05-29
申请号：US11941437
申请日：2007-11-16
申请人： Yoo Jae Won , Mi Youn Yoon , Seung Goo Ji , Kyu Cheol Oh
发明人： Yoo Jae Won , Mi Youn Yoon , Seung Goo Ji , Kyu Cheol Oh
IPC分类号： H04L9/18 , H04L9/00
CPC分类号： H04L9/0833 , H04L9/0891 , H04L63/065 , H04L2209/60 , H04L2209/80
摘要： The present invention relates to a method of managing a mobile multicast key using a foreign key. More specifically, the present invention relates to a method of managing a mobile multicast key using a foreign key for secure communication between a mobile terminal and a secure relay server in the region where microwaves from plural access points overlap.A method of managing a mobile multicast key using a foreign key according to the present invention has an advantage that multicast secure relay servers perform delegated authentication in advance in a region where microwaves overlap, thus reducing a delay time for authentication in a mobile terminal.And it has an advantage that it can minimize an effect from changes in group keys that user's movement make, by using a primary group key and a foreign key. This results in a reduction of an overhead from update of a group key while moving, and accordingly a reduction of a delay time.In addition, it has an advantage that it centralizes functions of key management to a secure relay server, thus overcoming the limitations on processing ability or network bandwidth of a mobile terminal.
摘要翻译：本发明涉及使用外键管理移动多播密钥的方法。更具体地，本发明涉及一种使用外键管理移动多播密钥的方法，所述外键用于来自多个接入点的微波重叠的区域中的移动终端与安全中继服务器之间的安全通信。根据本发明的使用外键管理移动多播密钥的方法具有以下优点：组播安全中继服务器预先在微波重叠的区域中执行委托认证，从而减少移动终端中认证的延迟时间。并且它的优点是可以通过使用主组密钥和外键来最小化用户移动所使用的组密钥更改的影响。这导致在移动时减少组密钥更新的开销，并因此减少延迟时间。此外，它具有将密钥管理的功能集中到安全中继服务器的优点，从而克服了移动终端的处理能力或网络带宽的限制。

6. 发明申请

US20130160127A1 SYSTEM AND METHOD FOR DETECTING MALICIOUS CODE OF PDF DOCUMENT TYPE 审中-公开
标题翻译：用于检测PDF文件类型的恶意代码的系统和方法
公开(公告)号：US20130160127A1
公开(公告)日：2013-06-20
申请号：US13657303
申请日：2012-10-22
申请人： Hyun Cheol Jeong , Seung Goo Ji , Tai Jin Lee , Jong Il Jeong , Hong Koo Kang , Byung Ik Kim
发明人： Hyun Cheol Jeong , Seung Goo Ji , Tai Jin Lee , Jong Il Jeong , Hong Koo Kang , Byung Ik Kim
IPC分类号： G06F21/00
CPC分类号： G06F21/566
摘要： Disclosed herein is a PDF document type malicious code detection system for efficiently detecting a malicious code embedded in a document type and a method thereof. The present invention may perform a dynamic and static analysis on JavaScript within a PDF document, and execute the PDF document to perform a PDF dynamic analysis, thereby achieving an effect of efficiently extracting a malicious code embedded in the PDF document.
摘要翻译：这里公开了一种用于有效地检测嵌入在文档类型中的恶意代码的PDF文档类型的恶意代码检测系统及其方法。本发明可以对PDF文档中的JavaScript进行动态和静态分析，并且执行PDF文档来执行PDF动态分析，从而实现有效地提取嵌入PDF文档中的恶意代码的效果。

7. 发明申请

US20120167220A1 SEED INFORMATION COLLECTING DEVICE AND METHOD FOR DETECTING MALICIOUS CODE LANDING/HOPPING/DISTRIBUTION SITES 审中-公开
标题翻译：收集信息的收集信息和检测恶意代码登陆/篡改/分发站点的方法
公开(公告)号：US20120167220A1
公开(公告)日：2012-06-28
申请号：US13304986
申请日：2011-11-28
申请人： Jong-Il Jeong , Chae-Tae Im , Joo-Hyung Oh , Hong-Koo Kang , Jin-Kyung Lee , Byoung-Ik Kim , Seung-Goo Ji , Tai-Jin Lee , Hyun-Cheol Jeong
发明人： Jong-Il Jeong , Chae-Tae Im , Joo-Hyung Oh , Hong-Koo Kang , Jin-Kyung Lee , Byoung-Ik Kim , Seung-Goo Ji , Tai-Jin Lee , Hyun-Cheol Jeong
IPC分类号： G06F11/00
CPC分类号： G06F21/563
摘要： Provided is seed information collecting device for detecting malicious code landing/hopping/distribution sites. The device comprises: a seed information collecting module collecting social issue keywords from a seed information collecting channel and collecting address information of potential malicious code landing/hopping/distribution sites using the collected social issue keywords; a web source code collecting module collecting web source code of the potential malicious code landing/hopping/distribution sites using the address information of the potential malicious code landing/hopping/distribution sites collected by the seed information collecting module; and a policy management module managing collection policies of the seed information collecting module and the web source code collecting module.
摘要翻译：提供了用于检测恶意代码登陆/跳跃/分发站点的种子信息收集装置。该装置包括：种子信息收集模块，从种子信息采集通道收集社会问题关键词，并使用所收集的社会问题关键词收集潜在的恶意代码登陆/跳出/分发站点的地址信息; 网站源代码收集模块，利用种子信息收集模块收集的潜在恶意代码登陆/跳跃/分发站点的地址信息，收集潜在恶意代码登陆/分发站点的网站源代码; 以及策略管理模块，其管理种子信息收集模块和web源代码收集模块的收集策略。

8. 发明申请

US20120159625A1 MALICIOUS CODE DETECTION AND CLASSIFICATION SYSTEM USING STRING COMPARISON AND METHOD THEREOF 审中-公开
标题翻译：使用STRING比较的恶意代码检测和分类系统及其方法
公开(公告)号：US20120159625A1
公开(公告)日：2012-06-21
申请号：US13282978
申请日：2011-10-27
申请人： Hyun-Cheol JEONG , Seung-Goo JI , Tai Jin LEE , Jong-Il JEONG , Hong-Koo KANG , Byung-Ik KIM
发明人： Hyun-Cheol JEONG , Seung-Goo JI , Tai Jin LEE , Jong-Il JEONG , Hong-Koo KANG , Byung-Ik KIM
IPC分类号： G06F21/24
CPC分类号： G06F21/562
摘要： The present invention provides a malicious code detection and classification system using a string comparison technique, including a string extracting unit configured to extract all expressed strings existing in a binary file from the malicious code binary file; a string refining unit configured to refine elements obstructing malicious code detection and classification in the strings extracted from the string extracting unit; and a string comparison unit configured to determine how similar one binary is to another binary by comparing strings refined from the string refining unit.
摘要翻译：本发明提供了一种使用字符串比较技术的恶意代码检测和分类系统，包括：字符串提取单元，被配置为从恶意代码二进制文件中提取存在于二进制文件中的所有表达的字符串; 字符串精炼单元，被配置为对从字符串提取单元提取的字符串中的恶意代码检测和分类进行细化的元件; 以及字符串比较单元，被配置为通过比较从字符串精炼单元精炼的字符来确定一个二进制是如何与另一个二进制相似的。

9. 发明申请

US20120159621A1 DETECTION SYSTEM AND METHOD OF SUSPICIOUS MALICIOUS WEBSITE USING ANALYSIS OF JAVASCRIPT OBFUSCATION STRENGTH 有权
标题翻译：使用JAVASCRIPT OBFUSCING强度分析检测系统和可疑恶性网站的方法
公开(公告)号：US20120159621A1
公开(公告)日：2012-06-21
申请号：US13282911
申请日：2011-10-27
申请人： Hyun-Cheol Jeong , Seung-Goo Ji , Tai Jin Lee , Jong-II Jeong , Hong-Koo Kang , Byung-Ik Kim
发明人： Hyun-Cheol Jeong , Seung-Goo Ji , Tai Jin Lee , Jong-II Jeong , Hong-Koo Kang , Byung-Ik Kim
IPC分类号： G06F21/00
CPC分类号： G06F21/51 , G06F21/563 , H04L63/1483
摘要： The present invention provides a detection system of a suspicious malicious website using the analysis of a JavaScript obfuscation strength, which includes: an entropy measuring block of measuring an entropy of an obfuscated JavaScript present in the website, a special character entropy, and a variable/function name entropy; a frequency measuring block of measuring a specific function frequency, an encoding mark frequency and a % symbol frequency of the JavaScript; a density measuring block of measuring the maximum length of a single character string of the JavaScript; and a malicious website confirming block of determining whether the relevant website is malicious by comparing an obfuscation strength value, measured by the entropy measuring block, the frequency measuring block and the density measuring block, with a threshold value.
摘要翻译：本发明提供了一种使用JavaScript混淆强度分析的可疑恶意网站的检测系统，其包括：测量网站中存在的模糊JavaScript的熵的熵测量块，特殊字符熵和可变/ 函数名熵测量特定功能频率的频率测量块，JavaScript的编码标记频率和％符号频率; 测量JavaScript的单个字符串的最大长度的密度测量块; 以及通过将熵测量块测量的混淆强度值，频率测量块和密度测量块与阈值进行比较来确定相关网站是否是恶意的恶意网站确认块。

10. 发明申请

US20100290462A1 METHOD OF MANAGING GROUP OF DYNAMIC MULTICAST EFFICIENTLY 失效
标题翻译：动态多媒体组管理方法
公开(公告)号：US20100290462A1
公开(公告)日：2010-11-18
申请号：US12464645
申请日：2009-05-12
申请人： Mi Youn Yoon , Seung Goo Ji , Hyun Cheol Jeong , Yoo Jae Won
发明人： Mi Youn Yoon , Seung Goo Ji , Hyun Cheol Jeong , Yoo Jae Won
IPC分类号： H04L12/56 , G06F15/173
CPC分类号： H04L12/185 , H04L63/065 , H04L63/08
摘要： The present invention relates to a method of efficiently managing dynamic multicast groups. In the method of efficiently managing dynamic multicast groups a hierarchical structure is used as a network structure for a multicast service. Accordingly, there are advantages in that groups can be merged or divided efficiently and overload depending on group management can be reduced.
摘要翻译：本发明涉及一种有效管理动态组播组的方法。在有效管理动态组播组的方法中，分层结构被用作组播业务的网络结构。因此，具有能够有效地合并或分割组合的优点，并且可以减少根据组管理的过载。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式