-
公开(公告)号:KR1020140117811A
公开(公告)日:2014-10-08
申请号:KR1020130032521
申请日:2013-03-27
Applicant: 한국전자통신연구원
Abstract: The present invention is to effectively show a relationship between a user and the other party by analyzing record data collected from a mobile forensic device. For this, the present invention, as a method for visualizing the record data using the mobile forensic device which collects and manages the record data including information on the other party when an event such as a phone call or a text message service occurs, provides a method for visualizing record data comprising: a step for receiving a rate of event occurrence by the other party using the collected record data; a step for classifying the information on the other party by rankings, according to the calculated rate of event occurrence; a step for generating graphic data presenting a relationship between the information on the other party and information of a user using a mobile terminal based on the classified rankings; and a step for displaying the graphic data.
Abstract translation: 本发明是通过分析从移动取证装置收集的记录数据来有效地显示用户与另一方之间的关系。 为此,本发明作为在发生诸如电话呼叫或文本消息服务的事件发生时收集和管理包括关于另一方的信息的记录数据的移动取证装置可视化记录数据的方法, 用于可视化记录数据的方法,包括:用于使用所收集的记录数据接收另一方的事件发生率的步骤; 按照计算出的事件发生率对排名等级的信息进行分类; 基于分类排序生成呈现对方的信息和使用移动终端的用户的信息之间的关系的图形数据的步骤; 以及显示图形数据的步骤。
-
公开(公告)号:KR101407060B1
公开(公告)日:2014-06-13
申请号:KR1020100105346
申请日:2010-10-27
Applicant: 한국전자통신연구원
IPC: G06F19/00
CPC classification number: G06F17/30864
Abstract: 디지털 증거 자료 수집을 위한 데이터 분석 및 증거화 방법과 시스템이 개시된다. 데이터의 수집 대상이 되는 대상 장치로부터 사용 히스토리 정보를 수집하여 분석하고, 사용 히스토리 정보에 기초하여 인터넷상의 데이터를 다운로드하여 수집하고, 수집된 데이터에 대한 시점확인 토큰 발급을 요청하여 발급된 시점확인 토큰을 수령하는 온라인 데이터 포렌식 서버, 시점확인 토큰 발급 요청에 대응하여 수집된 데이터에 대한 시점확인 토큰을 발급하여 온라인 데이터 포렌식 서버로 제공하는 시점확인 토큰 발급 서버 및 수집된 데이터를 저장하는 저장 장치를 포함하여 데이터 분석 및 증거화 시스템를 구성한다. 본 발명에 따른 방법 및 시스템을 이용할 경우에는 수집되는 온라인 데이터에 대해 시점확인 토큰을 발급 받음으로써, 수집된 온라인 데이터가 과거 특정 시점으로부터 수집 시점까지 온라인 상의 해당 주소에 존재했으며, 수집 시점 이후로부터 수집된 데이터가 변경되지 않았음을 용이하게 증명할 수 있다.
-
公开(公告)号:KR1020140062651A
公开(公告)日:2014-05-26
申请号:KR1020120128849
申请日:2012-11-14
Applicant: 한국전자통신연구원
IPC: G06F17/00
CPC classification number: G06Q50/01
Abstract: Disclosed are a method of calculating similarity and a device thereof. According to an embodiment of the present invention, the method of calculating similarity includes: a step of receiving communication activity records by user and extracting predefined similarity calculation data; a step of modeling communication activity patterns by user and common data among the users based on the extracted similarity calculation data; and a step of calculating similarity among the users using the modeled communication activity patterns by user and the modeled common data. The step of modeling includes: a step of modeling the communication activity patterns by calculating values of static attributes from the similarity calculation data; and a step of modeling the common data by calculating values of dynamic attributes from the similarity calculation data. By doing so, it is possible to accurately determine similarity between two users and easily recognize a user, among a number of users, having similarity in communication activity records with a certain user.
Abstract translation: 公开了一种计算相似度的方法及其装置。 根据本发明的实施例,计算相似度的方法包括:接收用户的通信活动记录并提取预定义的相似度计算数据的步骤; 基于所提取的相似度计算数据,在用户之间建立通信活动模式和用户之间的公共数据的步骤; 以及使用用户建模的通信活动模式和建模的公共数据来计算用户之间的相似性的步骤。 建模步骤包括:通过从相似性计算数据计算静态属性的值来建模通信活动模式的步骤; 以及通过从相似度计算数据计算动态属性的值来对公共数据进行建模的步骤。 通过这样做,可以准确地确定两个用户之间的相似度,并且容易地识别在多个用户中具有与某个用户的通信活动记录相似的用户。
-
公开(公告)号:KR1020130085505A
公开(公告)日:2013-07-30
申请号:KR1020110134165
申请日:2011-12-14
Applicant: 한국전자통신연구원
CPC classification number: H04L63/302 , G06F21/60 , G06Q50/18
Abstract: PURPOSE: An e-discovery device of an information leakage preventing system is provided to prevent the information leakage within a company and is provided to be prepared with the cause analysis and responding function of an information leakage accident when the information leakage accident is occurred. CONSTITUTION: A common block (200) comprises a leakage accident preparation module and a leakage accident post response module. The leakage accident post response module prepares with the data for investigating the cause of the information leakage accident. The leakage accident post response module performs the investigation about the information leakage accident. A litigation exclusive block (210) calculates the evidence of litigation of the information leakage into the predetermined format. The litigation exclusive block visualizes the calculated evidence. The litigation exclusive block destroys the information about the calculated evidence based on the predetermined policy. [Reference numerals] (100) Integrate PC security block; (120) N/W transmitting signal control block; (140) Physical device security block; (160) Data base security block; (210) Litigation exclusive block; (220) Common block; (230) Leakage accident preparation response module; (240) Leakage accident post response module; (AA) E-discovery; (BB) Information leakage prevention system; (CC) Information management; (D1) Response strategy establishment; (D2) Collection; (D3) Storage; (D4) Process; (D5) Review and analysis; (E1) Calculation; (E2) Sending and breaking; (F1) Physical device use control; (F2) Printer/fax original text storage; (F3) I/O interface access and use information record identification; (G1) File life cycle management; (G2) PMS/personal fire wall/hacking tool detection; (G3) File auto encryption; (G4) File search in a PC; (G5) File access/use logging; (G6) File original text storage; (G7) Main service use logging; (H1) H1 mail attachment file control; (H2) N/W packet monitoring; (H3) Content control; (H4) Key word unit monitor/stop; (H5) File system level detection; (H6) Mail/message logging; (H7) Use control on services; (H8) N/W packet capturing; (I1) DB access control; (I2) DB decoding; (I3) DB access logging
Abstract translation: 目的:提供信息泄漏防护系统的电子发现装置,以防止公司内的信息泄漏,并提供信息泄漏事故发生时的信息泄露事故的原因分析和响应功能。 构成:一个共同的块(200)包括泄漏事故准备模块和泄漏事故后响应模块。 泄漏事故后响应模块准备了调查信息泄露事故原因的数据。 泄漏事故后响应模块对信息泄漏事故进行调查。 诉讼排他性块(210)将信息泄露的诉讼证据计算为预定格式。 诉讼专用块可视化计算的证据。 诉讼独占方式根据预定政策破坏有关计算证据的信息。 (附图标记)(100)集成PC安全块; (120)N / W发射信号控制块; (140)物理设备安全块; (160)数据库安全块; (210)诉讼专用块; (220)普通块; (230)泄漏事故准备响应模块; (240)泄漏事故后响应模块; (AA)电子发现; (BB)信息泄漏防范系统; (CC)信息管理; (D1)响应策略建立; (D2)收藏; (D3)储存; (D4)工艺; (D5)审查和分析; (E1)计算; (E2)发送和断开; (F1)物理设备使用控制; (F2)打印机/传真原始文本存储; (F3)I / O接口访问和使用信息记录识别; (G1)文件生命周期管理; (G2)PMS /个人防火墙/黑客工具检测; (G3)文件自动加密; (G4)在PC中进行文件搜索; (G5)文件访问/使用日志; (G6)文件原文储存; (G7)主要服务使用记录; (H1)H1邮件附件文件控制; (H2)N / W数据包监控; (H3)内容控制; (H4)关键字单元监视/停止; (H5)文件系统级检测; (H6)邮件/邮件记录; (H7)使用对服务的控制; (H8)N / W数据包捕获; (I1)DB访问控制; (I2)DB解码; (I3)DB访问记录
-
公开(公告)号:KR1020130085482A
公开(公告)日:2013-07-30
申请号:KR1020110130823
申请日:2011-12-08
Applicant: 한국전자통신연구원
CPC classification number: G06F21/6245 , G06F11/3438 , G06F21/32 , H04L9/3231
Abstract: PURPOSE: A security strengthened digital forensic device is provided to protect the user privacy by permitting only the authorized administrator to access to the collected forensic data. CONSTITUTION: A fingerprint registration unit (120) registers the registered fingerprint, which will be registered for the user authorization process, by receiving from the authorized administrator. A fingerprint authorization unit (130) compares the authorized fingerprint, which is received from the user for the user authorization process, with the pre-registered fingerprint. The fingerprint authorization unit performs the user authorization process depending on the satisfaction of the predetermined condition. A database unit (140) stores the forensic data which is collected by the forensic data collecting unit. If the user authorization process succeeds, a forensic data analysis unit (150) analyzes the forensic data which is stored in the database unit. [Reference numerals] (100) Digital forensic device; (11) User computer 1; (111,113,115) Forensic data collection unit; (120) Fingerprint registration unit; (13) User computer 2; (130) Fingerprint authorization unit; (140) Database unit; (15) User computer N; (150) Forensic data analysis unit; (20) Registration fingerprint; (30) Authorization fingerprint
Abstract translation: 目的:提供安全加强的数字取证设备,以保护用户隐私,只允许授权管理员访问收集的法医数据。 构成:指纹登记单元(120)通过从授权管理员的接收登记注册用户授权处理的登记指纹。 指纹授权单元(130)将从用户授权处理的用户接收到的授权指纹与预先登记的指纹进行比较。 指纹授权单元根据预定条件的满足来执行用户授权处理。 数据库单元(140)存储由法医数据收集单元收集的取证数据。 如果用户授权过程成功,则法医数据分析单元(150)分析存储在数据库单元中的取证数据。 (附图标记)(100)数字取证装置; (11)用户计算机1; (111,113,115)法医数据收集单位; (120)指纹登记单位; (13)用户计算机2; (130)指纹授权单元; (140)数据库单元; (15)用户计算机N; (150)法医数据分析单位; (20)注册指纹; (30)授权指纹
-
Patent Agency Ranking
公开(公告)号:KR1020130062667A
公开(公告)日:2013-06-13
申请号:KR1020110129062
申请日:2011-12-05
Applicant: 한국전자통신연구원
IPC: G06F17/30
CPC classification number: G06F17/30106
Abstract: PURPOSE: A file search device using attribute information and a method thereof are provided to suggest files corresponding to a user query in real time by generating a multi index database according to each attribute of the files. CONSTITUTION: An attribute extracting unit(104) extracts attribute information through the analysis of files, a distributed index generating unit(106) generates an index database by attribute by using the attribute information, and a storage unit(110) stores the index database. If a query is inputted, a file search unit(114) searches for the storage unit for an index database corresponding to the query to generate a search result. If the files are not compressed files, a file classifying unit(100) supplies the files to an attribute extracting unit. If the files are compressed files, a decompressing unit(102) decompresses the files to supply the same to the attribute extracting unit. [Reference numerals] (100) File classifying unit; (102) Decompressing unit; (104) Attribute extracting unit; (106) Distributed index generating unit; (108) Distributed index managing unit; (112) Query analyzing unit; (114) File search unit; (116) Graphic output unit; (118) Doubtful file processing unit
Abstract translation: 目的:提供使用属性信息的文件搜索装置及其方法,通过根据文件的每个属性生成多索引数据库来实时地建立与用户查询相对应的文件。 构成:属性提取单元(104)通过文件分析提取属性信息,分布式索引生成单元(106)通过使用属性信息通过属性生成索引数据库,存储单元(110)存储索引数据库。 如果输入了查询,则文件搜索单元(114)搜索与该查询对应的索引数据库的存储单元以生成搜索结果。 如果文件不是压缩文件,则文件分类单元(100)将文件提供给属性提取单元。 如果文件是压缩文件,则解压缩单元(102)解压缩文件以将其提供给属性提取单元。 (附图标记)(100)文件分类单元; (102)解压单元; (104)属性提取单元; (106)分布式索引生成单元; (108)分布式索引管理单元; (112)查询分析单元; (114)文件搜索单元; (116)图形输出单元; (118)可疑文件处理单元
-
公开(公告)号:KR1020130053838A
公开(公告)日:2013-05-24
申请号:KR1020110119515
申请日:2011-11-16
Applicant: 한국전자통신연구원
IPC: G06F17/00
Abstract: PURPOSE: A familiarity calculating device and a method thereof are provided to accurately calculate familiarity between a user and an interlocutor by calculating the familiarity based on time importance and a weighted value. CONSTITUTION: An information extracting unit(120) extracts a communication use record for communication with contact information in a wireless terminal. A weighted value setting unit(122) sets a weighted value to each contact in the contact information and the communication use record. A time importance setting unit(124) sets up time importance to the communication use record based on service execution time of the communication use record. A familiarity calculating unit(126) calculates familiarity by the communication use record based on the time importance and the weighted value to calculate familiarity between a user of the wireless terminal and an interlocutor corresponding to the contact information. [Reference numerals] (100) Communication history DB; (110) Address list DB; (120) Information extracting unit; (122) Weighted value setting unit; (124) Time importance setting unit; (126) Familiarity calculating unit; (128) Display unit
Abstract translation: 目的:提供熟悉度计算装置及其方法,以通过基于时间重要性和加权值计算熟悉度来准确计算用户和对话者之间的熟悉程度。 构成:信息提取单元(120)提取用于与无线终端中的联系人信息通信的通信使用记录。 加权值设定单元(122)对联系人信息和通信用记录中的每个联系人设定加权值。 时间重要性设定单元(124)基于通信使用记录的服务执行时间设定通信使用记录的时间重要性。 熟悉度计算单元(126)基于时间重要性和加权值计算通信使用记录的熟悉度,以计算无线终端的用户与对应于该联系人信息的对话者之间的熟悉度。 (附图标记)(100)通信历史DB; (110)地址列表DB; (120)信息提取单元; (122)加权值设定单位; (124)时间重要性设定单位; (126)熟练度计算单位; (128)显示单元
-
公开(公告)号:KR1020100072997A
公开(公告)日:2010-07-01
申请号:KR1020080131571
申请日:2008-12-22
Applicant: 한국전자통신연구원
CPC classification number: G06F17/30616
Abstract: PURPOSE: A method and a system for searching string based on syllable separation are provided to improve index generation speed and minimize wrong extraction, thereby realizing exact character string search. CONSTITUTION: A searched target string input unit(100) receives input of search target character string. A unit dividing unit(110) regularly divides the searched target string into search target unit having one or more syllable. An index generating unit(130) eliminates searched target units duplicated in the divided searched target strings. The index generating unit generates index including generation frequency and origination place information in the searched target strings about each searched target units.
Abstract translation: 目的:提供一种基于音节分离搜索字符串的方法和系统,以提高索引生成速度,最大限度地减少错误提取,从而实现精确的字符串搜索。 构成:搜索目标字符串输入单元(100)接收搜索目标字符串的输入。 单元划分单元(110)将搜索到的目标串定义为具有一个或多个音节的搜索目标单元。 索引生成单元(130)消除了在划分的搜索到的目标串中复制的搜索到的目标单元。 索引生成单元在搜索到的目标串中生成关于每个搜索目标单位的生成频率和发起地点信息的索引。
-
公开(公告)号:KR1020070059607A
公开(公告)日:2007-06-12
申请号:KR1020050118628
申请日:2005-12-07
Applicant: 한국전자통신연구원
CPC classification number: G06K9/0061
Abstract: A method and a device for recognizing an iris by using a CPA based on a cumulative sum are provided to authenticate a user by extracting iris feature from an iris image through the CPA based on the cumulative sum. A divider(310) converts the iris image into the images having a specific pixel size into polar coordinates and divides the polar coordinates into cells. A grouper(320) groups/outputs the first group comprising the fixed number of cells and the second group comprising the bigger number of cells than the first group. A feature vector generator(330) performs the cumulative sum-based CPA by using a feature value of each cell grouped in the first or second group as a representative value and generates a feature vector by assigning a different value to the cell corresponding to a change point and the remaining cells. An authenticator(340) performs authentication by comparing the generated feature vector with the registered feature vector.
Abstract translation: 提供了一种通过使用基于累积和的CPA来识别虹膜的方法和装置,以通过基于累积和通过CPA从虹膜图像中提取虹膜特征来对用户进行认证。 分频器(310)将虹膜图像转换为具有特定像素尺寸的图像成极坐标,并将极坐标分割成单元。 石斑鱼(320)对包含固定数量的细胞的第一组进行分组/输出,第二组包括比第一组更多的细胞数。 特征向量生成器(330)通过使用分组在第一组或第二组中的每个单元的特征值作为代表值来执行基于累积和的CPA,并且通过向对应于变化的单元分配不同的值来生成特征向量 点和剩余的单元格。 认证器(340)通过将生成的特征向量与登记的特征向量进行比较来进行认证。
-
公开(公告)号:KR100453220B1
公开(公告)日:2004-10-15
申请号:KR1020010076460
申请日:2001-12-05
Applicant: 한국전자통신연구원
IPC: G06K9/00
CPC classification number: G07C9/00103 , G06K9/00087 , G07C9/00087
Abstract: In an apparatus for authenticating a user by employing feature points of a fingerprint image of the user, a fingerprint image input circuit scans a fingerprint of a user to be registered to provide a first fingerprint image and a fingerprint of a user to be authenticated to provide a second fingerprint image. A host provides registered feature points data corresponding to the first fingerprint image and target feature points data corresponding to the second fingerprint image. A security token circuit estimates a position difference and a direction difference between pairs of a registered feature point and a target feature point and corrects the two feature points based on the position difference and the direction difference to provide authentication result data.
Abstract translation: 在通过采用用户的指纹图像的特征点来认证用户的设备中,指纹图像输入电路扫描要注册的用户的指纹以提供第一指纹图像和待认证的用户的指纹以提供 第二指纹图像。 主机提供与第一指纹图像对应的注册特征点数据和与第二指纹图像对应的目标特征点数据。 安全令牌电路估计登记特征点和目标特征点的配对之间的位置差异和方向差异,并且基于位置差异和方向差异校正这两个特征点以提供认证结果数据。 <图像>
-
-
-
-
-
-
-
-
-
Search Results
61
records
(took 0.036 seconds)
