Invention Grant
- Patent Title: Method and apparatus for identifying vulnerability information using keyword analysis for banner of open port
-
Application No.: US15345396Application Date: 2016-11-07
-
Publication No.: US10339319B2Publication Date: 2019-07-02
- Inventor: Hwan Kuk Kim , Tae Eun Kim , Dae Il Jang , Eun Hye Ko , Jee Soo Jurn , Sa rang Na , Eun Byul Lee
- Applicant: Korea Internet & Security Agency
- Applicant Address: KR Seoul
- Assignee: KOREA INTERNET & SECURITY AGENCY
- Current Assignee: KOREA INTERNET & SECURITY AGENCY
- Current Assignee Address: KR Seoul
- Priority: KR10-2016-0146997 20161104
- Main IPC: G06F21/57
- IPC: G06F21/57 ; G06F16/901 ; G06F16/903
Abstract:
Provided are a method and an apparatus for identifying computer system information which process banner information of an open port of a computer system, create a CPE tree by analyzing a CPE dictionary, and search keywords of respective levels of the CPE tree in a banner and generate one or more CPEs based on the CPE tree observing a format of the CPE dictionary to select CPEs which most match information of an operating system or an application program of a specific computer system among various CPE candidates and rapidly and easily identify CPE type vulnerability information which can interlock with CVE vulnerability information.
Public/Granted literature
Information query
