专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20060120284A1 Apparatus and method for controlling abnormal traffic 失效
标题翻译：用于控制异常流量的装置和方法
公开(公告)号：US20060120284A1
公开(公告)日：2006-06-08
申请号：US11292462
申请日：2005-12-01
申请人： Kwang Kim , Byeong Choi , Dong Seo
发明人： Kwang Kim , Byeong Choi , Dong Seo
IPC分类号： G06F12/14 , G06F15/173 , H04L12/26
CPC分类号： H04L63/0227 , H04L63/0236 , H04L63/1425
摘要： An apparatus and method for controlling abnormal traffic are provided. The apparatus includes: a list management unit which stores a list of Internet Protocols (IPs) transmitting normal packets and, if an IP transmitting packets constituting current packet traffic currently input to a network is a registered IP listed in the IP list, announces that the current packet traffic is packet traffic generated by a registered IP; a channel allocation unit which determines whether packets input via the list management unit are normal or abnormal, allocates channels to the input packets in such a manner that a packet determined as being normal is given priority over a packet determined as being abnormal, adjusts a number of channels reserved for allocation to normal packets in response to a predetermined control command, transmits the input packets to a network node, and transmits IP information regarding the input packets that are determined as being normal, the predetermined control command being issued according to the level of services for normal packet traffic; a success rate determination unit which determines a service success rate for packets received from a registered IP listed in the IP list stored in the list management unit based on packet traffic information received from the list management unit and the IP information received from the channel allocation information; and a channel number adjustment unit which transmits the predetermined command to the channel allocation unit so that the channel allocation unit can adjust the number of channels reserved for allocation to normal packets based on the service success rate determined by the success rate determination unit. Accordingly, it is possible to guarantee the survivability of a network and the reliability of Internet services by appropriately controlling abnormal traffic input to the network.
摘要翻译：提供了一种用于控制异常流量的装置和方法。该装置包括：列表管理单元，其存储发送普通分组的因特网协议（IP）列表，并且如果构成当前输入到网络的当前分组业务的IP传输分组是IP列表中列出的注册IP，则宣布当前分组流量是由注册的IP生成的分组流量; 确定经由列表管理单元输入的分组是正常还是异常的信道分配单元，以对被确定为正常的分组优先于被确定为异常的分组的方式为输入分组分配信道，调整数根据预定的控制命令保留用于分配给正常分组的信道，将输入分组发送到网络节点，并发送关于被确定为正常的输入分组的IP信息，根据该级别发出预定控制命令正常分组业务的业务; 成功率确定单元，其基于从列表管理单元接收的分组业务信息和从信道分配信息接收的IP信息，确定从列表管理单元中存储的IP列表中列出的注册IP接收的分组的服务成功率 ; 以及信道号调整单元，其将所述预定命令发送到所述信道分配单元，使得所述信道分配单元可以基于由所述成功率确定单元确定的服务成功率来调整保留用于正常分组的信道数目。因此，通过适当地控制对网络的异常流量输入，可以保证网络的生存性和互联网服务的可靠性。

2. 发明申请

US20070101126A1 User/service authentication methods and apparatuses using split user authentication keys 审中-公开
标题翻译：使用分组用户验证密钥的用户/服务认证方法和设备
公开(公告)号：US20070101126A1
公开(公告)日：2007-05-03
申请号：US11520172
申请日：2006-09-13
申请人： Byeong Choi , Dong Seo , Jong Jang
发明人： Byeong Choi , Dong Seo , Jong Jang
IPC分类号： H04L9/00
CPC分类号： H04L9/085 , H04L9/3226 , H04L9/3263
摘要： User/service authentication methods and apparatuses using split user authentication keys are provided. A user authentication key is generated using user's personal information including an identification number and bio information, the generated user authentication key is split into a plurality of keys, and a request for authentication of a user that uses a first user authentication key provided to the user from among the plurality of split user authentication keys is authenticated using the other user authentication keys. After the authentication is successful, a service authentication is performed according to a result obtained by recombining the split user authentication keys, so that when some of distributed service authentication keys are lost or stolen, since original user authentication information cannot be restored, user information is prevented from being exposed, damage caused by a lost or stolen authentication key owing to double authentication is reduced, security protection is reinforced using a security channel formed through the service authentication, and communication exchanges such as electronic commerce over Internet are safer.
摘要翻译：提供了使用分割用户验证密钥的用户/服务认证方法和装置。使用用户的个人信息（包括识别号码和生物信息）生成用户认证密钥，所生成的用户认证密钥被分割成多个密钥，以及使用提供给用户的第一用户认证密钥的用户的认证请求从多个分离用户认证密钥中使用其他用户认证密钥进行认证。认证成功后，根据分离的用户认证密钥进行重组而获得的结果进行业务认证，从而当一些分散业务认证密钥丢失或被盗时，由于原始用户认证信息无法恢复，用户信息为防止暴露，由于双重身份验证而导致的丢失或被盗验证密钥造成的损害减少，使用通过服务认证形成的安全通道来加强安全保护，并且诸如因特网上的电子商务的通信交换更安全。

3. 发明申请

US20060130145A1 System and method for analyzing malicious code protocol and generating harmful traffic 审中-公开
标题翻译：分析恶意代码协议并产生有害流量的系统和方法
公开(公告)号：US20060130145A1
公开(公告)日：2006-06-15
申请号：US11152987
申请日：2005-06-14
申请人： Byeong Choi , Dong Seo
发明人： Byeong Choi , Dong Seo
IPC分类号： G06F12/14
CPC分类号： H04L63/1408 , H04L63/1433
摘要： The provided method and system is a method and system for analyzing the malicious code protocol and generating harmful traffic. The harmful traffic generating method constructs packet protocol information for generating a first attack packet corresponding to the TCP/IP protocol for generating network traffic, and then sets network vulnerability scanning for generating a second attack packet for carrying out network vulnerability scanning. Subsequently, the method constructs attack information for generating a third attack packet in the form of denial of service, and generates harmful traffic using the packet protocol information, network vulnerability scanning and attack information. Accordingly, performance testing of the network security system against malicious code attacks such as the Internet worm can be performed.
摘要翻译：提供的方法和系统是分析恶意代码协议并产生有害流量的方法和系统。有害流量生成方法构建分组协议信息，生成与TCP / IP协议相对应的第一攻击分组，生成网络流量，然后设置网络漏洞扫描，生成第二个攻击报文，进行网络漏洞扫描。随后，该方法构造了以拒绝服务形式生成第三个攻击报文的攻击信息，并使用报文协议信息，网络漏洞扫描和攻击信息生成有害流量。因此，可以执行网络安全系统对恶意代码攻击（如Internet蠕虫）的性能测试。

4. 发明申请

US20070136139A1 Apparatus and method of protecting user's privacy information and intellectual property against denial of information attack 审中-公开
标题翻译：保护用户隐私信息和知识产权免受信息攻击的设备和方法
公开(公告)号：US20070136139A1
公开(公告)日：2007-06-14
申请号：US11634446
申请日：2006-12-05
申请人： Byeong Choi , Kook Kim , Jong Ryu , Dong Seo , Jong Jang
发明人： Byeong Choi , Kook Kim , Jong Ryu , Dong Seo , Jong Jang
IPC分类号： G06Q20/00
CPC分类号： H04L63/0227 , G06Q20/206 , H04L63/101 , H04L63/1408
摘要： Provided are an apparatus and method of protecting a user's privacy information and corporate intellectual property against a denial-of-information (DoI) attack, and more particularly, a privacy & intellectual property protection framework (PIPPF) and a network-based privacy & intellectual property protection system (NPIPPS). The PIPPF includes the NPIPPS and an integrated identity access and management (IAM)/network access control (NAC) solution. The NPIPPS monitors inbound and outbound contents at the network level and prevents the leakage of important information. In addition, the integrated IAM/NAC solution prevents abnormal user activity within a network and unauthorized use of information.
摘要翻译：提供了一种保护用户的隐私信息和企业知识产权免遭拒绝信息攻击的装置和方法，特别是隐私和知识产权保护框架（PIPPF）以及基于网络的隐私与知识产权财产保护制度（NPIPPS）。 PIPPF包括NPIPPS和集成身份访问和管理（IAM）/网络访问控制（NAC）解决方案。 NPIPPS监控网络级别的入站和出站内容，防止重要信息泄露。此外，集成的IAM / NAC解决方案可防止用户在网络中的异常活动，以及未经授权的使用信息。

5. 发明申请

US20060206935A1 Apparatus and method for adaptively preventing attacks 审中-公开
标题翻译：自适应防止攻击的装置和方法
公开(公告)号：US20060206935A1
公开(公告)日：2006-09-14
申请号：US11187758
申请日：2005-07-22
申请人： Byeong Choi , Dong Seo , Jong Jang
发明人： Byeong Choi , Dong Seo , Jong Jang
IPC分类号： G06F12/14
CPC分类号： H04L63/1416 , G06F21/55
摘要： An apparatus and method for adaptively preventing attacks which can reduce false positives and negatives for abnormal traffic and can adaptively deal with unknown attacks are provided. The apparatus includes: a behavior analysis unit which estimates an attack detection critical value by analyzing the behavior of network traffic; a traffic determination unit which determines what type of traffic the network traffic is using the estimated attack detection critical value; an attack determination unit which determines whether the network traffic is abnormal by analyzing the network traffic according to a set of determination rules; and an adaptive attack prevention unit which handles the network traffic based on the determination results provided by the attack determination unit. Accordingly, it is possible to reduce false positives and negatives for abnormal traffic or unknown attacks input to a network.
摘要翻译：提供一种自适应防止攻击的装置和方法，可以减少异常流量的误报和否定，并可以自适应地应对未知攻击。该装置包括：行为分析单元，其通过分析网络流量的行为来估计攻击检测临界值; 确定网络流量正在使用所估计的攻击检测临界值的业务类型的流量确定单元; 攻击确定单元，其通过根据一组确定规则分析网络流量来确定网络流量是否异常; 以及基于由所述攻击确定单元提供的确定结果处理所述网络流量的自适应攻击防范单元。因此，可以减少输入到网络的异常流量或未知攻击的误报和否定。

6. 发明申请

US20080095252A1 ENCODING UPLINK ACKNOWLEDGMENTS TO DOWNLINK TRANSMISSIONS 有权
标题翻译：编写上行链路传输的确认信息
公开(公告)号：US20080095252A1
公开(公告)日：2008-04-24
申请号：US11764069
申请日：2007-06-15
申请人： Bong Hoe Kim , Young Yun , Ki Kim , Eun Kim , Joon Ahn , Suk Yoon , Dong Seo , Hak Kim , Jung Lee , In Jae Jung
发明人： Bong Hoe Kim , Young Yun , Ki Kim , Eun Kim , Joon Ahn , Suk Yoon , Dong Seo , Hak Kim , Jung Lee , In Jae Jung
IPC分类号： H04L27/28
CPC分类号： H04L27/2617 , H04L1/0026 , H04L1/0057 , H04L1/08 , H04L1/1621 , H04L1/1671 , H04L1/1861 , H04L5/0044 , H04L5/0053 , H04L27/2602
摘要： A portable device, such as a mobile terminal or user equipment, for encoding uplink acknowledgments to downlink transmissions. The portable device includes a receiver configured to receive a plurality of data blocks, such that each of the data blocks include an associated cyclic redundancy check (CRC), and a processor configured to determine received status for each of the data blocks by checking the CRC of each of the data blocks. The portable device further includes a transmitter for transmitting a response sequence which indicates the received status of all of the data blocks.
摘要翻译：诸如移动终端或用户设备的便携式设备，用于对下行链路传输进行上行链路确认。便携式设备包括接收器，其被配置为接收多个数据块，使得每个数据块包括相关联的循环冗余校验（CRC），以及处理器，被配置为通过检查CRC来确定每个数据块的接收状态的每个数据块。便携式设备还包括用于发送指示所有数据块的接收状态的响应序列的发射机。

7. 发明申请

US20080056179A1 PACKET TRANSMISSION ACKNOWLEDGEMENT IN WIRELESS COMMUNICATION SYSTEM 有权
标题翻译：无线通信系统中的分组传输确认
公开(公告)号：US20080056179A1
公开(公告)日：2008-03-06
申请号：US11929024
申请日：2007-10-30
申请人： Bong Hoe Kim , Joon Ahn , Hak Kim , Dong Roh , Dong Seo , Seung Won
发明人： Bong Hoe Kim , Joon Ahn , Hak Kim , Dong Roh , Dong Seo , Seung Won
IPC分类号： H04Q7/00
CPC分类号： H04L27/02 , H04L1/1692 , H04L1/1812 , H04L27/18
摘要： Transmitting an acknowledgement/negative acknowledgement (ACK/NACK) signal in association with a packet transmitted on an uplink is disclosed. The method includes the steps of receiving a packet transmitted from a user equipment, decoding the packet, and determining whether the packet has been successfully decoded, transmitting an ACK signal or a NACK signal, based on the decoding result. Different transmission powers are allocated for the ACK signal and the NACK signal. Alternatively, the transmission power for the NACK signal selectively has an OFF level. The present invention optimizes the transmission powers for downlink ACK/NACK signals in accordance with the required reception quality of each of the ACK/NACK signals, and thus, enables the system to operate efficiently.
摘要翻译：公开了与在上行链路上发送的分组相关联地发送确认/否定确认（ACK / NACK）信号。该方法包括以下步骤：基于解码结果接收从用户设备发送的分组，解码分组，以及确定分组是否已被成功解码，发送ACK信号或NACK信号。为ACK信号和NACK信号分配不同的发送功率。或者，NACK信号的发送功率选择性地具有OFF电平。本发明根据每个ACK / NACK信号的所需接收质量优化下行链路ACK / NACK信号的发送功率，从而使系统有效地工作。

8. 发明申请

US20070264936A1 METHOD OF ALLOCATING RADIO RESOURCES IN MULTI-CARRIER SYSTEM 有权
标题翻译：在多载波系统中分配无线电资源的方法
公开(公告)号：US20070264936A1
公开(公告)日：2007-11-15
申请号：US11671960
申请日：2007-02-06
申请人： Hak Kim , Bong Kim , Joon Ahn , Dong Seo , Jung Lee , Young Yun , Suk Yoon , Eun Kim , Ki Kim
发明人： Hak Kim , Bong Kim , Joon Ahn , Dong Seo , Jung Lee , Young Yun , Suk Yoon , Eun Kim , Ki Kim
IPC分类号： H04B1/00
CPC分类号： H04W72/0453 , H04L5/0053 , H04L5/023 , H04L27/2601 , H04L27/2602 , H04W72/042 , H04W72/14 , H04W74/0833 , H04W74/0866 , H04W84/12
摘要： A method of allocating radio resources in a multi-carrier system is disclosed, by which a signaling message can be efficiently transmitted according to necessity of a user equipment. In a user equipment of a mobile communication system transceiving data using a plurality of subcarriers, the present invention includes the steps of if the signaling message to be transmitted is generated in the user equipment, generating a preamble sequence according to a user equipment identifier to identify the user equipment, transmitting a preamble signal including the preamble sequence and the signaling message to a base station, and receiving an acknowledgement signal for the preamble signal generated according to the user equipment identifier.
摘要翻译：公开了一种在多载波系统中分配无线电资源的方法，通过该方法可以根据用户设备的需要有效地发送信令消息。在使用多个子载波收发数据的移动通信系统的用户设备中，本发明包括以下步骤：如果在用户设备中生成要发送的信令消息，则根据用户设备标识符生成前导序列以识别所述用户设备向基站发送包括所述前导序列和所述信令消息的前同步信号，以及接收根据所述用户设备标识符生成的所述前导信号的确认信号。

9. 发明申请

US20070007287A1 Hook coupling structure and case using the same 审中-公开
标题翻译：钩耦合结构和外壳采用相同
公开(公告)号：US20070007287A1
公开(公告)日：2007-01-11
申请号：US11475943
申请日：2006-06-28
申请人： Dong Seo , Yong Kim
发明人： Dong Seo , Yong Kim
IPC分类号： B65D6/28
CPC分类号： F16B5/0664
摘要： Disclosed is a hook coupling structure and a case using the same. The hook coupling structure for coupling first and second components 20 and 30 to each other includes a latching protrusion 28 protruding from a surface of one of the first and second components 20 and 30 and a hook 32 protruding from the other of the first and second components 20 and 30, a leading end of the hook 32 engaging with the latching protrusion 28 in a lateral direction relative to a protruding direction of the latching protrusion 28. The hook 32 has a planar overall shape, and the leading end has a latching step 33 formed on its lateral surface so as to engage with the latching protrusion. When the hook coupling structure is used for a case, the inner space defined by components, which are coupled to each other by the hook, increases. This renders the exterior of the case light, slim, and compact.
摘要翻译：公开了一种钩连接结构和使用其的壳体。用于将第一和第二部件20和30彼此联接的钩连接结构包括从第一和第二部件20和30中的一个的表面突出的闩锁突起28和从第一和第二部件中的另一个突出的钩32 如图20和图30所示，钩32的前端相对于闩锁突起28的突出方向在横向方向上与闩锁突起28接合。钩32具有平面的整体形状，并且前端具有形成在其侧表面上以与闩锁突起接合的闩锁步骤33。当钩结合结构用于壳体时，由钩子彼此联接的部件限定的内部空间增加。这使得外壳的外壳轻巧，纤薄，紧凑。

10. 发明申请

US20050060582A1 Apparatus and method for providing real-time traceback connection using connection redirection technique 审中-公开
标题翻译：使用连接重定向技术提供实时追溯连接的装置和方法
公开(公告)号：US20050060582A1
公开(公告)日：2005-03-17
申请号：US10749744
申请日：2003-12-30
申请人： Yang Choi , Hwan Kim , Dong Seo , Sangho Lee
发明人： Yang Choi , Hwan Kim , Dong Seo , Sangho Lee
IPC分类号： H04L12/28 , G06F11/30 , H04L29/06
CPC分类号： H04L63/1441 , H04L2463/146
摘要： An apparatus and method for providing traceback connection using a connection redirection technique are provided. A packet blocking unit blocks an attack packet transmitted to the system and a first response packet output from the system in response to the attack packet, if a system attack sensing signal is received. A response packet generation unit generates a second response packet into which a watermark is inserted, in response to the attack packet, and transmits the second response packet to a system corresponding to the source address of the attack packet. A path traceback unit receives a detection packet containing transmission path information of the second response packet from a system existing on a transmission path of the second response packet, and based on the received detection packet, traces back the transmission path of the second response packet and identifies the location of the attacker system. According to the apparatus and method, even when an attacker attacks a predetermined system via a plurality of systems, the actual location of the attacker system can be traced back fast and accurately and damage of the victim system can be minimized.
摘要翻译：提供了一种使用连接重定向技术提供回溯连接的装置和方法。如果接收到系统攻击感知信号，则分组阻塞单元阻止发送到系统的攻击分组和响应于攻击分组从系统输出的第一响应分组。响应分组生成单元响应于攻击分组生成插入了水印的第二响应分组，并将第二响应分组发送到与攻击分组的源地址对应的系统。路径追溯单元从存在于第二响应分组的传输路径上的系统接收包含第二响应分组的传输路径信息的检测分组，并且基于接收到的检测分组，追踪第二响应分组的传输路径，识别攻击者系统的位置。根据该装置和方法，即使攻击者通过多个系统攻击预定的系统，也可以快速，准确地跟踪攻击者系统的实际位置，并且可以使受害者系统的损坏最小化。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式