专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

51. 发明授权

US08307441B2 Log-based traceback system and method using centroid decomposition technique 有权
标题翻译：基于Log的追溯系统和使用重心分解技术的方法
公开(公告)号：US08307441B2
公开(公告)日：2012-11-06
申请号：US12669633
申请日：2007-11-21
申请人： Jong Hyun Kim , Geon Lyang Kim , Seon Gyoung Sohn , Beom Hwan Chang , Chi Yoon Jeong , Jong Ho Ryu , Jung Chan Na , Jong Soo Jang , Sung Won Sohn
发明人： Jong Hyun Kim , Geon Lyang Kim , Seon Gyoung Sohn , Beom Hwan Chang , Chi Yoon Jeong , Jong Ho Ryu , Jung Chan Na , Jong Soo Jang , Sung Won Sohn
IPC分类号： G06F11/34
CPC分类号： H04L45/00 , H04L45/12 , H04L63/1416 , H04L63/1425 , H04L63/1441 , H04L2463/146
摘要： There are provided a system and method for tracing back an attacker by using centroid decomposition technique, the system including: a log data input module collecting log data of an intrusion alarm from an intrusion detection system; a centroid node detection module generating a shortest path tree by applying a shortest path algorithm to network router connection information collected by a network administration server, detecting a centroid node by applying centroid decomposition technique removing a leaf-node to the shortest path tree, and generating a centroid tree whose node of each level is the detected centroid node; and a traceback processing module requesting log data of a router matched with the node of each level of the centroid tree, and tracing back a router identical to the log data of the collected intrusion alarm as a router connected to a source of an attacker by comparing the log data of the router with the log data of the collected intrusion alarm. According to the system and method, an attacker causing a security intrusion event may be quickly detected, a load on the system is reduced, and a passage host exposed to a danger or having weaknesses may be easily recognized, thereby easily coping with an attack.
摘要翻译：提供了一种通过使用质心分解技术跟踪攻击者的系统和方法，该系统包括：日志数据输入模块，从入侵检测系统收集入侵警报的日志数据; 质心节点检测模块，通过对网络管理服务器收集的网络路由器连接信息应用最短路径算法，生成最短路径树，通过应用质心分解技术检测质心节点，去除叶节点到最短路径树，并生成每个级别的节点是检测到的质心节点的质心树; 以及回溯处理模块，请求与质心树的每个级别的节点匹配的路由器的日志数据，并且通过比较来跟踪与收集的入侵警报器的日志数据相同的路由器作为连接到攻击者的源的路由器路由器的日志数据与收集的入侵报警的日志数据。根据系统和方法，可以快速地检测到导致安全入侵事件的攻击者，系统上的负载减少，并且易于识别暴露于危险或具有弱点的通道主机，从而容易地应对攻击。

52. 发明授权

US07849187B2 Network status display device and method using traffic pattern map 有权
标题翻译：网络状态显示设备和使用流量模式图的方法
公开(公告)号：US07849187B2
公开(公告)日：2010-12-07
申请号：US11527850
申请日：2006-09-26
申请人： Beom Hwan Chang , Jung Chan Na , Geon Lyang Kim , Dong Young Kim , Jin Oh Kim , Hyun Joo Kim , Hyo Chan Bang , Soo Hyung Lee , Seon Gyoung Shon , Jong Soo Jang , Sung Won Sohn
发明人： Beom Hwan Chang , Jung Chan Na , Geon Lyang Kim , Dong Young Kim , Jin Oh Kim , Hyun Joo Kim , Hyo Chan Bang , Soo Hyung Lee , Seon Gyoung Shon , Jong Soo Jang , Sung Won Sohn
IPC分类号： G06F15/16
CPC分类号： H04L43/028 , H04L43/062 , H04L43/16 , H04L63/1408
摘要： A network status display device using a traffic pattern map is provided. The device includes: a traffic feature extractor extracting a port number of a port having the maximum occupancy of micro-flows and macro-flows for each network address section and host address section with reference to traffic information collected by an external traffic information collector, calculating and storing an occupancy rate of the port; a traffic status display unit making a network traffic pattern map expressed by destination-source network addresses and a host traffic pattern map expressed by destination-source host addresses and displaying the port information stored in the traffic feature extractor on the network traffic pattern map and the host traffic pattern map; and a traffic anomaly determination unit determining whether a network status is abnormal with reference to the network traffic pattern map and the host traffic pattern map and detecting and reporting a harmful or abnormal traffic which causes the abnormal network status. The device can determine whether the anomaly deteriorating the network performance exists and can easily and quickly detect the harmful or abnormal traffic which causes the anomaly by the use of the port information of the port having the maximum occupancy of the micro-flows and the macro-flows for each network address section and each host address section.
摘要翻译：提供了使用业务模式图的网络状态显示设备。该设备包括：流量特征提取器，参考由外部交通信息收集器收集的交通信息，提取每个网络地址部分和主机地址部分具有最大占用微流量和宏流量的端口的端口号，计算并存储所述端口的占用率; 形成由目的地源网络地址表示的网络流量模式图的流量状态显示单元和由目的地 - 源主机地址表示的主机流量模式图，并且在网络流量模式图上显示存储在流量特征提取器中的端口信息，并且主机流量模式图; 以及流量异常判定单元，基于网络流量模式图和主机流量模式图来判断网络状态是否异常，并检测并报告导致异常网络状态的有害或异常流量。该设备可以确定异常是否存在网络性能恶化，并可以通过使用具有微流量最大占用端口的端口信息和宏观流量来轻松快速地检测导致异常的有害或异常流量，每个网络地址部分和每个主机地址部分的流程。

53. 发明授权

US07840811B2 Network system and communication methods for securely bootstraping mobile IPv6 mobile node using pre-shared key 失效
标题翻译：使用预共享密钥安全地引导移动IPv6移动节点的网络系统和通信方法
公开(公告)号：US07840811B2
公开(公告)日：2010-11-23
申请号：US11635181
申请日：2006-12-07
申请人： Jae Hoon Nah , Hyeok Chan Kwon , Jong Soo Jang
发明人： Jae Hoon Nah , Hyeok Chan Kwon , Jong Soo Jang
IPC分类号： H04L9/00 , H04L9/32 , G06F11/00
CPC分类号： H04L9/0844 , H04L9/321 , H04L61/203 , H04L61/6059 , H04L63/0272 , H04L63/062 , H04L63/08 , H04L63/0892 , H04L63/164 , H04L2209/80 , H04L2463/061 , H04W12/04 , H04W12/06 , H04W80/04
摘要： Provided is a network system using diameter authentication, authorization and accounting (AAA) infrastructure to support the bootstrapping of a Mobile Internet Protocol version 6 (IPv6) mobile node. The network system includes a mobile node equipped with Mobile IPv6, an attendant which is accessed by the mobile node when the mobile node moves toward a new network, an AAA local server which supports AAA processes for the mobile node in a local network, an AAA home server which supports AAA processes for the mobile node in a home network, and supports initial settings during the bootstrapping of the mobile node, and a home agent which handles binding update (BU) and binding acknowledgement (BA) regarding the mobile node. The AAA home server can configure initial settings for the mobile node that is authenticated by the AAA local server so that the mobile node can be effectively bootstrapped. Then, the AAA home server can distribute an IPsec SA to the mobile node and a home agent, and perform BU and BA based on the initial settings.
摘要翻译：提供了一种使用直径认证，授权和计费（AAA）基础设施来支持移动互联网协议版本6（IPv6）移动节点的引导的网络系统。该网络系统包括移动节点，该移动节点配备有移动IPv6，当移动节点向新网络移动时被移动节点接入的话务员，支持本地网络中的移动节点的AAA进程的AAA本地服务器，AAA 家庭服务器，其支持归属网络中的移动节点的AAA进程，并且在移动节点的引导期间支持初始设置，以及处理关于移动节点的绑定更新（BU）和绑定确认（BA）的归属代理。 AAA家庭服务器可以配置由AAA本地服务器认证的移动节点的初始设置，从而可以有效地引导移动节点。然后，AAA家庭服务器可以将IPsec SA分发到移动节点和归属代理，并且基于初始设置来执行BU和BA。

54. 发明授权

US07787394B2 Network status display device and method using traffic flow-radar 有权
标题翻译：网络状态显示装置及方法采用交通流雷达
公开(公告)号：US07787394B2
公开(公告)日：2010-08-31
申请号：US11599909
申请日：2006-11-15
申请人： Beom Hwan Chang , Jung Chan Na , Geon Lyang Kim , Dong Young Kim , Jin Oh Kim , Hyun Joo Kim , Hyo Chan Bang , Soo Hyung Lee , Seon Gyoung Sohn , Jong Soo Jang , Sung Won Sohn
发明人： Beom Hwan Chang , Jung Chan Na , Geon Lyang Kim , Dong Young Kim , Jin Oh Kim , Hyun Joo Kim , Hyo Chan Bang , Soo Hyung Lee , Seon Gyoung Sohn , Jong Soo Jang , Sung Won Sohn
IPC分类号： H04L12/66 , G01R31/08 , H04W36/00
CPC分类号： H04L43/045 , H04L43/0817 , H04L43/16
摘要： A network status display device using a traffic flow-radar is provided. The network status display device includes: a traffic feature extractor calculating flow occupancy rates for total flows, micro-flows and macro-flows with respect to each of a plurality of traffic features with reference to traffic information for each traffic feature such as a network address, a port, a transmitting/receiving host address or a protocol collected by an external traffic information collector, and storing the calculation result; a traffic status display unit displaying the flow occupancy rates for each traffic feature calculated and stored in the traffic feature extractor on a radar with dots for each traffic feature; and a traffic anomaly determination unit determining whether a network status is abnormal with reference to the radar for each traffic feature, detecting and reporting the type of the abnormal network status and harmful or abnormal traffic that generates the abnormal network status, when the abnormal status occurs.
摘要翻译：提供了使用交通流量雷达的网络状态显示装置。网络状态显示装置包括：业务特征提取器，参考每个业务特征（例如网络地址）的业务信息来计算关于多个业务特征中的每一个的总流量，微流量和宏流量的流量占用率，端口，发送/接收主机地址或由外部交通信息收集器收集的协议，并存储计算结果; 交通状态显示单元，其显示针对每个交通特征点的雷达上计算并存储在交通特征提取器中的每个交通特征的流量占用率; 以及交通异常判定单元，针对每个流量特征，参照雷达确定网络状态是否异常，检测和报告异常网络状态的类型以及产生异常网络状态的有害或异常流量，当发生异常状态时。

55. 发明申请

US20100212013A1 LOG-BASED TRACEBACK SYSTEM AND METHOD USING CENTROID DECOMPOSITION TECHNIQUE 有权
标题翻译：基于LOG的跟踪系统和使用中心分解技术的方法
公开(公告)号：US20100212013A1
公开(公告)日：2010-08-19
申请号：US12669633
申请日：2007-11-21
申请人： Jong Hyun Kim , Geon Lyang Kim , Seon Gyoung Sohn , Beom Hwan Chang , Chi Yoon Jeong , Jong Ho Ryu , Jung Chan Na , Jong Soo Jang , Sung Won Sohn
发明人： Jong Hyun Kim , Geon Lyang Kim , Seon Gyoung Sohn , Beom Hwan Chang , Chi Yoon Jeong , Jong Ho Ryu , Jung Chan Na , Jong Soo Jang , Sung Won Sohn
IPC分类号： G06F11/34
CPC分类号： H04L45/00 , H04L45/12 , H04L63/1416 , H04L63/1425 , H04L63/1441 , H04L2463/146
摘要： There are provided a system and method for tracing back an attacker by using centroid decomposition technique, the system including: a log data input module collecting log data of an intrusion alarm from an intrusion detection system; a centroid node detection module generating a shortest path tree by applying a shortest path algorithm to network router connection information collected by a network administration server, detecting a centroid node by applying centroid decomposition technique removing a leaf-node to the shortest path tree, and generating a centroid tree whose node of each level is the detected centroid node; and a traceback processing module requesting log data of a router matched with the node of each level of the centroid tree, and tracing back a router identical to the log data of the collected intrusion alarm as a router connected to a source of an attacker by comparing the log data of the router with the log data of the collected intrusion alarm. According to the system and method, an attacker causing a security intrusion event may be quickly detected, a load on the system is reduced, and a passage host exposed to a danger or having weaknesses may be easily recognized, thereby easily coping with an attack.
摘要翻译：提供了一种通过使用质心分解技术跟踪攻击者的系统和方法，该系统包括：日志数据输入模块，从入侵检测系统收集入侵警报的日志数据; 质心节点检测模块，通过对网络管理服务器收集的网络路由器连接信息应用最短路径算法，生成最短路径树，通过应用质心分解技术检测质心节点，去除叶节点到最短路径树，并生成每个级别的节点是检测到的质心节点的质心树; 以及回溯处理模块，请求与质心树的每个级别的节点匹配的路由器的日志数据，并且通过比较来跟踪与收集的入侵警报器的日志数据相同的路由器作为连接到攻击者的源的路由器路由器的日志数据与收集的入侵报警的日志数据。根据系统和方法，可以快速地检测到导致安全入侵事件的攻击者，系统上的负载减少，并且易于识别暴露于危险或具有弱点的通道主机，从而容易地应对攻击。

56. 发明申请

US20100208083A1 SYSTEM AND METHOD FOR PROVIDING APPLICATION SERVICE USING IMAGE DATA 有权
标题翻译：使用图像数据提供应用服务的系统和方法
公开(公告)号：US20100208083A1
公开(公告)日：2010-08-19
申请号：US12678967
申请日：2008-05-14
申请人： Yun Kyung Lee , Jong Wook Han , Geon Woo Kim , Deok Gyu Lee , Kyo Il Chung , Jong Soo Jang
发明人： Yun Kyung Lee , Jong Wook Han , Geon Woo Kim , Deok Gyu Lee , Kyo Il Chung , Jong Soo Jang
IPC分类号： H04N5/225
CPC分类号： H04N7/18 , H04L65/4084 , H04L65/605 , H04N21/21 , H04N21/23
摘要： There is provided a system and method for providing an application service using image data. One image data processing server collects images (for example, still images and moving images) captured by various kinds of image capturing apparatuses, such as CCTV systems and processes the collected images into data required to provide application services. A plurality of application service servers only provide processed data of the image data processing server without requiring an additional process to a display device of a user. Accordingly, the configuration of each of the application service servers is simplified to thereby reduce manufacturing costs.
摘要翻译：提供了一种使用图像数据提供应用服务的系统和方法。一个图像数据处理服务器收集诸如CCTV系统的各种图像捕获设备捕获的图像（例如，静止图像和运动图像），并将收集的图像处理为提供应用服务所需的数据。多个应用服务服务器仅提供图像数据处理服务器的处理数据，而不需要对用户的显示设备的附加处理。因此，简化了各应用服务服务器的配置，从而降低制造成本。

57. 发明授权

US07773809B2 Method and apparatus for distinguishing obscene video using visual feature 有权
标题翻译：使用视觉特征区分淫秽视频的方法和装置
公开(公告)号：US07773809B2
公开(公告)日：2010-08-10
申请号：US11442565
申请日：2006-05-26
申请人： Seung Min Lee , Taek Yong Nam , Jong Soo Jang , Ho Gyun Lee
发明人： Seung Min Lee , Taek Yong Nam , Jong Soo Jang , Ho Gyun Lee
IPC分类号： G06K9/00 , G06K9/46 , G06K9/62 , G10L15/06 , G04H60/32
CPC分类号： G06K9/00711 , G06K9/4652
摘要： A method and apparatus for generating discriminant functions for distinguishing obscene videos by using visual features of video data, and a method and apparatus for determining whether videos are obscene by using the generated discriminant functions, are provided. The method of generating discriminant functions includes: creating a first frame set by extracting a predetermined number of frames for each video data unit from a group of video data classified as obscene or non-obscene, and creating a second frame set by selecting the frames; generating a frame based discriminant function by extracting visual features of frames of the second frame set, and then generating a first discriminant value by determining whether each frame of the first frame set contains obscene video data; generating a group frame based discriminant function by extracting visual features of a group of frames of the first frame set, and then generating a second discriminant value by determining whether the frames of the group contain obscene video data; and generating a synthetic discriminant function by using the first and second discriminant values as a representative value of the video data. Accordingly, obscene video data stored in a computer system can be automatically and accurately distinguished.
摘要翻译：提供一种用于通过使用视频数据的视觉特征来产生用于区分淫秽视频的判别函数的方法和装置，以及用于通过使用所生成的判别函数来确定视频是淫秽的方法和装置。产生判别函数的方法包括：通过从分类为淫秽或非淫秽的一组视频数据中提取每个视频数据单元的预定数量的帧来创建第一帧集合，并通过选择帧来创建第二帧集合; 通过提取第二帧集合的帧的视觉特征，生成基于帧的判别函数，然后通过确定第一帧集合的每个帧是否包含淫秽视频数据来生成第一判别值; 通过提取第一帧集合的帧组的视觉特征，生成基于组帧的判别函数，然后通过确定该组的帧是否包含淫秽视频数据来生成第二判别式值; 以及通过使用第一和第二判别值作为视频数据的代表值来产生合成判别函数。因此，可以自动且准确地区分存储在计算机系统中的淫秽视频数据。

58. 发明授权

US07583952B2 Access pointer for interconnecting power line communication network and wireless network and method therefor 有权
标题翻译：用于互连电力线通信网络和无线网络的接入指针及其方法
公开(公告)号：US07583952B2
公开(公告)日：2009-09-01
申请号：US11286560
申请日：2005-11-23
申请人： Hyung Kyu Lee , Jong Wook Han , Jong Soo Jang , Sung Won Sohn
发明人： Hyung Kyu Lee , Jong Wook Han , Jong Soo Jang , Sung Won Sohn
IPC分类号： H04M9/00 , H04Q7/20
CPC分类号： H04W4/18 , H04B3/54 , H04B2203/5441 , H04B2203/5445 , H04B2203/5454 , H04L12/2803 , H04L12/2832 , H04L12/4625 , H04L2012/2841 , H04L2012/2843 , H04W80/00 , H04W88/08 , Y02D70/142
摘要： An access pointer for interconnecting a power line communication (PLC) network of a home network and a wireless network and a method therefor are provided. When data is received from the PLC network through media access control of a data link layer, data on upper layers above a network layer in the received data is converted into a format suitable to a wireless network layer. The converted data is transmitted to the wireless network through the media access control of the data link layer. Accordingly, the PLC network and the wireless network are easily interconnected.
摘要翻译：提供了用于互连家庭网络的电力线通信（PLC）网络和无线网络的接入指针及其方法。当通过数据链路层的媒体访问控制从PLC网络接收到数据时，接收到的数据中的网络层上的上层数据被转换为适合于无线网络层的格式。转换的数据通过数据链路层的媒体访问控制被发送到无线网络。因此，PLC网络和无线网络容易互连。

59. 发明授权

US07539147B2 Apparatus and method for detecting and visualizing anomalies in network traffic 有权
标题翻译：用于检测和可视化网络流量异常的装置和方法
公开(公告)号：US07539147B2
公开(公告)日：2009-05-26
申请号：US11077638
申请日：2005-03-11
申请人： Beom Hwan Chang , Soo Hyung Lee , Jin Oh Kim , Jung Chan Na , Jong Soo Jang , Sung Won Sohn
发明人： Beom Hwan Chang , Soo Hyung Lee , Jin Oh Kim , Jung Chan Na , Jong Soo Jang , Sung Won Sohn
IPC分类号： G01R31/08
CPC分类号： H04L41/22 , H04L41/06 , H04L43/0817
摘要： Provided is an apparatus for detecting and visualizing anomalies in network traffic which includes a traffic information storing portion storing information on network traffic, a traffic state display portion presenting a status of the network traffic generated for a predetermined threshold time based on the information on network traffic on an orthogonal coordinates system in a form of a graph connecting at least one point data as a coordinate value, and a traffic anomalies determination portion determining an existence of anomalies in the network traffic based on a shape of the graph.
摘要翻译：提供了一种用于检测和可视化网络流量异常的装置，其包括存储关于网络流量的信息的交通信息存储部分，基于关于网络流量的信息呈现针对预定阈值时间生成的网络流量的状态的交通状态显示部分以连接至少一个点数据作为坐标值的图形的正交坐标系，以及基于图形的形状来确定网络业务中的异常的存在的业务异常确定部分。

60. 发明申请

US20070177728A1 ARIA encryption/decryption apparatus and method, and method of generating initialization key for the same 有权
标题翻译： ARIA加密/解密装置和方法，以及为其生成初始化密钥的方法
公开(公告)号：US20070177728A1
公开(公告)日：2007-08-02
申请号：US11634480
申请日：2006-12-06
申请人： Sang Woo Lee , Yong Sung Jeon , Ki Young Kim , Jong Soo Jang
发明人： Sang Woo Lee , Yong Sung Jeon , Ki Young Kim , Jong Soo Jang
IPC分类号： H04K1/06
CPC分类号： H04L9/0631 , H04L2209/122
摘要： Disclosed is an Academy, Research Institute, and Agency (ARIA) encryption/decryption apparatus for encrypting and decrypting input data by repeating a plurality of rounds. The ARIA encryption/decryption apparatus includes a first register storing input data or an intermediate calculation value according to a first control signal; a second register storing a input round key for every round; an exclusive OR operation unit performing an exclusive OR operation on values stored in the first and second registers; a substitution unit substituting a result of the exclusive OR operation on a basis of an ARIA substitution algorithm; a diffusion unit diffusing a result of the substitution in the substitution unit on a basis of an ARIA diffusion algorithm if a current round is not a final round; and a control unit outputting the first control signal so that an output of the diffusion unit is used as the intermediate calculation value if the current round is the final round or an output of the substitution unit is used as the intermediate calculation value if the current round is the final round, and outputting an output of the exclusive OR operation unit as a result of the ARIA encryption/decryption.
摘要翻译：公开了一种用于通过重复多次轮加密和解密输入数据的Academy，Research Institute和Agency（ARIA）加密/解密装置。 ARIA加密/解密装置包括根据第一控制信号存储输入数据或中间计算值的第一寄存器; 存储每轮的输入循环密钥的第二寄存器; 异或运算单元对存储在第一和第二寄存器中的值执行异或运算; 替代单元基于ARIA替换算法代替异或运算的结果; 如果当前轮次不是最后一轮，则扩散单元基于ARIA扩散算法在取代单元中扩散取代的结果; 以及控制单元，如果当前轮次是最后一轮，则使用扩散单元的输出作为中间计算值，或者如果当前轮次使用替代单位的输出作为中间计算值，则输出第一控制信号是最后一轮，并且作为ARIA加密/解密的结果输出异或运算单元的输出。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式