-
公开(公告)号:KR1020130085505A
公开(公告)日:2013-07-30
申请号:KR1020110134165
申请日:2011-12-14
Applicant: 한국전자통신연구원
CPC classification number: H04L63/302 , G06F21/60 , G06Q50/18
Abstract: PURPOSE: An e-discovery device of an information leakage preventing system is provided to prevent the information leakage within a company and is provided to be prepared with the cause analysis and responding function of an information leakage accident when the information leakage accident is occurred. CONSTITUTION: A common block (200) comprises a leakage accident preparation module and a leakage accident post response module. The leakage accident post response module prepares with the data for investigating the cause of the information leakage accident. The leakage accident post response module performs the investigation about the information leakage accident. A litigation exclusive block (210) calculates the evidence of litigation of the information leakage into the predetermined format. The litigation exclusive block visualizes the calculated evidence. The litigation exclusive block destroys the information about the calculated evidence based on the predetermined policy. [Reference numerals] (100) Integrate PC security block; (120) N/W transmitting signal control block; (140) Physical device security block; (160) Data base security block; (210) Litigation exclusive block; (220) Common block; (230) Leakage accident preparation response module; (240) Leakage accident post response module; (AA) E-discovery; (BB) Information leakage prevention system; (CC) Information management; (D1) Response strategy establishment; (D2) Collection; (D3) Storage; (D4) Process; (D5) Review and analysis; (E1) Calculation; (E2) Sending and breaking; (F1) Physical device use control; (F2) Printer/fax original text storage; (F3) I/O interface access and use information record identification; (G1) File life cycle management; (G2) PMS/personal fire wall/hacking tool detection; (G3) File auto encryption; (G4) File search in a PC; (G5) File access/use logging; (G6) File original text storage; (G7) Main service use logging; (H1) H1 mail attachment file control; (H2) N/W packet monitoring; (H3) Content control; (H4) Key word unit monitor/stop; (H5) File system level detection; (H6) Mail/message logging; (H7) Use control on services; (H8) N/W packet capturing; (I1) DB access control; (I2) DB decoding; (I3) DB access logging
Abstract translation: 目的:提供信息泄漏防护系统的电子发现装置,以防止公司内的信息泄漏,并提供信息泄漏事故发生时的信息泄露事故的原因分析和响应功能。 构成:一个共同的块(200)包括泄漏事故准备模块和泄漏事故后响应模块。 泄漏事故后响应模块准备了调查信息泄露事故原因的数据。 泄漏事故后响应模块对信息泄漏事故进行调查。 诉讼排他性块(210)将信息泄露的诉讼证据计算为预定格式。 诉讼专用块可视化计算的证据。 诉讼独占方式根据预定政策破坏有关计算证据的信息。 (附图标记)(100)集成PC安全块; (120)N / W发射信号控制块; (140)物理设备安全块; (160)数据库安全块; (210)诉讼专用块; (220)普通块; (230)泄漏事故准备响应模块; (240)泄漏事故后响应模块; (AA)电子发现; (BB)信息泄漏防范系统; (CC)信息管理; (D1)响应策略建立; (D2)收藏; (D3)储存; (D4)工艺; (D5)审查和分析; (E1)计算; (E2)发送和断开; (F1)物理设备使用控制; (F2)打印机/传真原始文本存储; (F3)I / O接口访问和使用信息记录识别; (G1)文件生命周期管理; (G2)PMS /个人防火墙/黑客工具检测; (G3)文件自动加密; (G4)在PC中进行文件搜索; (G5)文件访问/使用日志; (G6)文件原文储存; (G7)主要服务使用记录; (H1)H1邮件附件文件控制; (H2)N / W数据包监控; (H3)内容控制; (H4)关键字单元监视/停止; (H5)文件系统级检测; (H6)邮件/邮件记录; (H7)使用对服务的控制; (H8)N / W数据包捕获; (I1)DB访问控制; (I2)DB解码; (I3)DB访问记录
-
Patent Agency Ranking
公开(公告)号:KR1020130085482A
公开(公告)日:2013-07-30
申请号:KR1020110130823
申请日:2011-12-08
Applicant: 한국전자통신연구원
CPC classification number: G06F21/6245 , G06F11/3438 , G06F21/32 , H04L9/3231
Abstract: PURPOSE: A security strengthened digital forensic device is provided to protect the user privacy by permitting only the authorized administrator to access to the collected forensic data. CONSTITUTION: A fingerprint registration unit (120) registers the registered fingerprint, which will be registered for the user authorization process, by receiving from the authorized administrator. A fingerprint authorization unit (130) compares the authorized fingerprint, which is received from the user for the user authorization process, with the pre-registered fingerprint. The fingerprint authorization unit performs the user authorization process depending on the satisfaction of the predetermined condition. A database unit (140) stores the forensic data which is collected by the forensic data collecting unit. If the user authorization process succeeds, a forensic data analysis unit (150) analyzes the forensic data which is stored in the database unit. [Reference numerals] (100) Digital forensic device; (11) User computer 1; (111,113,115) Forensic data collection unit; (120) Fingerprint registration unit; (13) User computer 2; (130) Fingerprint authorization unit; (140) Database unit; (15) User computer N; (150) Forensic data analysis unit; (20) Registration fingerprint; (30) Authorization fingerprint
Abstract translation: 目的:提供安全加强的数字取证设备,以保护用户隐私,只允许授权管理员访问收集的法医数据。 构成:指纹登记单元(120)通过从授权管理员的接收登记注册用户授权处理的登记指纹。 指纹授权单元(130)将从用户授权处理的用户接收到的授权指纹与预先登记的指纹进行比较。 指纹授权单元根据预定条件的满足来执行用户授权处理。 数据库单元(140)存储由法医数据收集单元收集的取证数据。 如果用户授权过程成功,则法医数据分析单元(150)分析存储在数据库单元中的取证数据。 (附图标记)(100)数字取证装置; (11)用户计算机1; (111,113,115)法医数据收集单位; (120)指纹登记单位; (13)用户计算机2; (130)指纹授权单元; (140)数据库单元; (15)用户计算机N; (150)法医数据分析单位; (20)注册指纹; (30)授权指纹
-
公开(公告)号:KR1020130062667A
公开(公告)日:2013-06-13
申请号:KR1020110129062
申请日:2011-12-05
Applicant: 한국전자통신연구원
IPC: G06F17/30
CPC classification number: G06F17/30106
Abstract: PURPOSE: A file search device using attribute information and a method thereof are provided to suggest files corresponding to a user query in real time by generating a multi index database according to each attribute of the files. CONSTITUTION: An attribute extracting unit(104) extracts attribute information through the analysis of files, a distributed index generating unit(106) generates an index database by attribute by using the attribute information, and a storage unit(110) stores the index database. If a query is inputted, a file search unit(114) searches for the storage unit for an index database corresponding to the query to generate a search result. If the files are not compressed files, a file classifying unit(100) supplies the files to an attribute extracting unit. If the files are compressed files, a decompressing unit(102) decompresses the files to supply the same to the attribute extracting unit. [Reference numerals] (100) File classifying unit; (102) Decompressing unit; (104) Attribute extracting unit; (106) Distributed index generating unit; (108) Distributed index managing unit; (112) Query analyzing unit; (114) File search unit; (116) Graphic output unit; (118) Doubtful file processing unit
Abstract translation: 目的:提供使用属性信息的文件搜索装置及其方法,通过根据文件的每个属性生成多索引数据库来实时地建立与用户查询相对应的文件。 构成:属性提取单元(104)通过文件分析提取属性信息,分布式索引生成单元(106)通过使用属性信息通过属性生成索引数据库,存储单元(110)存储索引数据库。 如果输入了查询,则文件搜索单元(114)搜索与该查询对应的索引数据库的存储单元以生成搜索结果。 如果文件不是压缩文件,则文件分类单元(100)将文件提供给属性提取单元。 如果文件是压缩文件,则解压缩单元(102)解压缩文件以将其提供给属性提取单元。 (附图标记)(100)文件分类单元; (102)解压单元; (104)属性提取单元; (106)分布式索引生成单元; (108)分布式索引管理单元; (112)查询分析单元; (114)文件搜索单元; (116)图形输出单元; (118)可疑文件处理单元
-
公开(公告)号:KR1020130053838A
公开(公告)日:2013-05-24
申请号:KR1020110119515
申请日:2011-11-16
Applicant: 한국전자통신연구원
IPC: G06F17/00
Abstract: PURPOSE: A familiarity calculating device and a method thereof are provided to accurately calculate familiarity between a user and an interlocutor by calculating the familiarity based on time importance and a weighted value. CONSTITUTION: An information extracting unit(120) extracts a communication use record for communication with contact information in a wireless terminal. A weighted value setting unit(122) sets a weighted value to each contact in the contact information and the communication use record. A time importance setting unit(124) sets up time importance to the communication use record based on service execution time of the communication use record. A familiarity calculating unit(126) calculates familiarity by the communication use record based on the time importance and the weighted value to calculate familiarity between a user of the wireless terminal and an interlocutor corresponding to the contact information. [Reference numerals] (100) Communication history DB; (110) Address list DB; (120) Information extracting unit; (122) Weighted value setting unit; (124) Time importance setting unit; (126) Familiarity calculating unit; (128) Display unit
Abstract translation: 目的:提供熟悉度计算装置及其方法,以通过基于时间重要性和加权值计算熟悉度来准确计算用户和对话者之间的熟悉程度。 构成:信息提取单元(120)提取用于与无线终端中的联系人信息通信的通信使用记录。 加权值设定单元(122)对联系人信息和通信用记录中的每个联系人设定加权值。 时间重要性设定单元(124)基于通信使用记录的服务执行时间设定通信使用记录的时间重要性。 熟悉度计算单元(126)基于时间重要性和加权值计算通信使用记录的熟悉度,以计算无线终端的用户与对应于该联系人信息的对话者之间的熟悉度。 (附图标记)(100)通信历史DB; (110)地址列表DB; (120)信息提取单元; (122)加权值设定单位; (124)时间重要性设定单位; (126)熟练度计算单位; (128)显示单元
-
公开(公告)号:KR100785804B1
公开(公告)日:2007-12-13
申请号:KR1020060108362
申请日:2006-11-03
Applicant: 한국전자통신연구원
Abstract: 본 발명에 의한 라우터 하드웨어 플랫폼에서의 침입차단 정책 적용 장치 및 그 방법은 적어도 하나 이상의 침입차단 정책을 관련 정보와 함께 저장하는 정책데이터베이스; 상기 정책데이터베이스에 침입차단 정책을 추가하거나 삭제하는 정책서버; 상기 관련 정보를 참조하여 우선순위에 따라 침입 차단 정책을 적용할 것을 결정하는 시간제어부; 및 상기 시간제어부의 결정에 의한 침입 차단 정책을 라우터하드웨어 플랫폼이 처리하는 데이터에 적용하여 침입을 차단하는 침입차단부;를 포함하는 것을 특징으로 하며, 하드웨어 플랫폼은 네트워크 프로세서가 장착되어 있으며, 정책을 우선순위에 따라 적용하여 네트워크 프로세서내의 마이크로 엔진에서 별도로 우선순서 처리를 할 필요가 없고, 우선순위의 순서에 따라 시간 정보를 메모리 리스트에 저장해 두어 정책을 적용할 시간을 검사하기 위해 데이터베이스의 많은 데이터를 검색하지 않고, 메모리 리스트의 요약 정보만을 검색하여 빠른 우선순위 처리와 정책 적용이 가능하다.
침입차단, 정책 적용-
公开(公告)号:KR1020040055511A
公开(公告)日:2004-06-26
申请号:KR1020020082204
申请日:2002-12-21
Applicant: 한국전자통신연구원
IPC: G06F15/00
Abstract: PURPOSE: A method for managing a security attribute of system resources is provided to quickly obtain/set security information and efficiently use a security information file in order to manage the security information of a kernel level. CONSTITUTION: At the initialization of a system, the contents of a security information file are loaded to a preset area on a memory. The security information is stored by being indexed to the memory connection list(S304). In case that a security information obtaining request is present in the kernel level, the corresponding security information is accessed by searching the memory connection list(S306).
Abstract translation: 目的:提供一种用于管理系统资源的安全属性的方法,以快速获取/设置安全信息,并有效地使用安全信息文件,以便管理内核级别的安全信息。 规定:在系统初始化时,将安全信息文件的内容加载到内存中的预设区域。 通过索引到存储器连接列表来存储安全信息(S304)。 在核心级别中存在安全信息获取请求的情况下,通过搜索存储器连接列表来访问对应的安全信息(S306)。
-
-
-
-
-
Search Results
46
records
(took 0.022 seconds)
