-
公开(公告)号:KR1020040103178A
公开(公告)日:2004-12-08
申请号:KR1020030035106
申请日:2003-05-31
Applicant: 삼성전자주식회사
Inventor: 김대엽
IPC: H04L9/32
CPC classification number: H04L63/0492
Abstract: PURPOSE: A security system and a method for digital contents are provided to eliminate an inconvenience to connect to an authentication server at every contents usage by storing an authentication control set and using the set at following contents usages. CONSTITUTION: A security system for digital contents includes a contents producer server(10), a contents provider server(20) and an authentication server(40). The contents producer server generates a producer control set having information for classifying contents to be supplied based on a predetermined service classification criterion. The contents producer server generates and provides contents having the producer control set. When the contents and the contents producer control set are received, the contents provider server conveys the producer control set to the authentication server and provides the service corresponding to the contents. When the contents producer control set is received, the authentication server maps the contents according to the service classification criterion and provides the mapped information when the service classification information is required from a user terminal. The authentication server alternatively provides a user authentication control set having required information when a particular service group is required from the user terminal.
Abstract translation: 目的:提供一种数字内容的安全系统和方法,以通过存储认证控制集并使用该组在以下内容使用来消除在每个内容使用情况下连接到认证服务器的不便。 构成:数字内容的安全系统包括内容生成器服务器(10),内容提供者服务器(20)和认证服务器(40)。 内容生成服务器基于预定的服务分类标准生成具有用于对要提供的内容进行分类的信息的生成器控制集。 内容生成器服务器生成并提供具有生成器控制集的内容。 当接收到内容和内容生成器控制集时,内容提供商服务器将生成器控制集传送给认证服务器,并提供对应于内容的服务。 当接收到内容生成器控制集时,认证服务器根据服务分类标准对内容进行映射,并且当从用户终端需要服务分类信息时提供映射信息。 当从用户终端需要特定服务组时,认证服务器交替地提供具有所需信息的用户认证控制集。
-
公开(公告)号:KR101889761B1
公开(公告)日:2018-09-21
申请号:KR1020110055544
申请日:2011-06-09
Applicant: 삼성전자주식회사
CPC classification number: H04L63/10 , G06F21/6209
Abstract: 컨텐츠이름기반의네트워킹에서컨텐츠보호방법이개시된다. 컨텐츠보호방법은, 컨텐츠생성자가보호하고자하는컨텐츠에대한컨텐츠보호정보를생성하고, 컨텐츠보호정보를포함하는컨텐츠위치정보를생성할수 있다. 여기서, 컨텐츠보호정보는, 컨텐츠의보호여부를나타내는마킹정보, 및컨텐츠의공개범위를나타내는정책정보중 적어도하나를포함할수 있다.
-
公开(公告)号:KR101285597B1
公开(公告)日:2013-07-15
申请号:KR1020060059792
申请日:2006-06-29
Applicant: 삼성전자주식회사
CPC classification number: H04L9/0891 , H04L9/0836
Abstract: 그룹 키 업데이트 방법 및 장치가 개시된다. 본 발명의 일실시예에 따른 그룹 키 업데이트 방법은 바이너리 트리(binary tree) 상에서 키 업데이트(key update) 시작 노드를 결정하는 단계, 상기 키 업데이트 시작 노드의 키를 업데이트하는 단계, 상기 업데이트된 키를 이용하여 상기 업데이트 된 키에 상응하는 노드의 부모 노드(parent node)의 키를 업데이트하는 단계, 및 상기 부모 노드의 키를 업데이트 하는 단계를 반복하여 상기 바이너리 트리의 루트 노드(root node)에 상응하는 키를 업데이트 하는 단계를 포함하는 것을 특징으로 한다. 따라서, 효율적으로 그룹 키 업데이트를 수행할 수 있다.
그룹 키, 키 업데이트, 일방향 함수-
公开(公告)号:KR1020120136544A
公开(公告)日:2012-12-20
申请号:KR1020110055544
申请日:2011-06-09
Applicant: 삼성전자주식회사
CPC classification number: H04L63/10 , G06F21/6209
Abstract: PURPOSE: A content name based network apparatus and content protection method are provided to enable a content creator to protect content from a network apparatus or a user who does not want to share content. CONSTITUTION: A content protection information creation unit(501) creates content protection information including policy information and marking information. The marking information exhibits the protection of content. The policy information exhibits an opening scope of the content. A content location information creation unit(502) creates content location information which exhibits a location of the content in a content name based network based on the content protection information. [Reference numerals] (501) Content protection information creation unit; (502) Content location information creation unit; (503) Message reception unit; (504) Determination unit; (505) Confirmation unit; (506) Transmission determination unit; (507) Content store
Abstract translation: 目的:提供基于内容名称的网络装置和内容保护方法,以使得内容创建者能够保护来自网络设备或不想共享内容的用户的内容。 构成:内容保护信息创建单元(501)创建包括策略信息和标记信息的内容保护信息。 标记信息表现出对内容的保护。 政策信息展现了内容的开放范围。 内容位置信息创建单元(502)基于内容保护信息创建在基于内容名称的网络中呈现内容的位置的内容位置信息。 (附图标记)(501)内容保护信息创建单元; (502)内容位置信息创建单元; (503)消息接收单元; (504)确定单位; (505)确认单位; (506)发送确定单元; (507)内容商店
-
公开(公告)号:KR1020120136507A
公开(公告)日:2012-12-20
申请号:KR1020110055481
申请日:2011-06-09
Applicant: 삼성전자주식회사
Inventor: 김대엽
CPC classification number: H04L63/1425 , H04L63/1458
Abstract: PURPOSE: A node apparatus for preventing the overflow of a PIT(pending interest table) and a method thereof are provided to prevent the overflow of the PIT by controlling a request message which flows by a flow control message. CONSTITUTION: A plurality of interface units(121~123) receives request messages. A PIT(130) stores the request messages. An attack sensing unit(111) counts the number of the request messages received in the interface units. The attack sensing unit senses the interface unit in which the number of the request messages received within the predetermined time is over a predetermined threshold value. A flow control request unit(112) transmits a flow control message to the sensed interface unit. [Reference numerals] (110) Control unit; (111) Attack sensing unit; (112) Flow control unit; (113) Attack response unit; (121) First interface unit; (122) Second interface unit; (123) n-th interface unit; (130) PIT; (140) FIB table; (150) Storage unit; (200) Transfer node apparatus; (AA) Internet; (BB) Request message; (CC) Flow control message
Abstract translation: 目的:提供一种用于防止PIT(等待感兴趣表)溢出的节点装置及其方法,以通过控制通过流控制消息流动的请求消息来防止PIT的溢出。 构成:多个接口单元(121〜123)接收请求消息。 PIT(130)存储请求消息。 攻击感知单元(111)对在接口单元中接收到的请求消息的数量进行计数。 攻击感测单元感测在预定时间内接收到的请求消息的数量超过预定阈值的接口单元。 流量控制请求单元(112)向所感测的接口单元发送流量控制消息。 (附图标记)(110)控制单元; (111)攻击感测单元; (112)流量控制单元; (113)攻击响应单位; (121)第一接口单元; (122)第二接口单元; (123)第n个接口单元; (130)PIT; (140)FIB表; (150)存储单元; (200)传送节点设备; (AA)互联网; (BB)请求消息; (CC)流量控制消息
-
Patent Agency Ranking
公开(公告)号:KR100970391B1
公开(公告)日:2010-07-15
申请号:KR1020050117724
申请日:2005-12-05
Applicant: 삼성전자주식회사
CPC classification number: H04H60/15 , H04L9/321 , H04L2209/601
Abstract: 브로드 캐스트 암호화 시스템에서의 태그 형성방법이 개시된다. 본 발명은, 소정 개수의 노드로 구성된 복수개의 노드그룹을 포함하는 계층 구조에서의 브로드캐스트 암호화 시스템에 사용되는 태그 형성방법에 있어서, (a) 제외된 적어도 하나의 리프 노드를 검출하는 단계, (b) 제0 계층을 구성하는 노드 아이디가 부여된 노드들 중 제외된 적어도 하나의 리프 노드가 속한 적어도 하나의 노드에 부여된 노드 아이디를 리프 노드의 제0 계층에서의 노드 패스 아이디로 설정하고, 적어도 하나의 노드 패스 아이디를 대응하는 리프노드의 노드 아이디가 증가하는 순서로 연결하여 제0 계층에 대한 태그 리스트를 형성하는 단계, 및 (c) (b)단계를 마지막 계층까지 반복적으로 수행하여 마지막 계층에 대한 태그 리스트까지 형성하는 단계를 통해 구현된다. 본 발명에 따르면, 태그 사이즈의 감소에 따라 BE 시스템에서의 서버의 전송량이 현저하게 감소되는 효과가 있다.
브로드 캐스트 암호화, 제외된 노드, 태그 테이블, 태그 정보, 노드 패스 아이디-
公开(公告)号:KR1020080048700A
公开(公告)日:2008-06-03
申请号:KR1020060119000
申请日:2006-11-29
Applicant: 삼성전자주식회사
CPC classification number: H04L9/0891 , H04L9/0836
Abstract: A method for generating a rekey index and a rekey index generator using the same are provided to reduce a transmission overhead by reducing the amount of information. A first field composition unit(910) inserts join information into a first field of a rekey index when new members join a group. A second field composition unit(920) inserts node numbers corresponding to each of the new members into a second field of the rekey index, in order to select necessary keys of encryption keys received from a receiving side. The receiving side recognizes an ancestor node of a node corresponding to a node number included in the second field of the rekey index, as an update target node.
Abstract translation: 提供一种用于生成重新密钥索引的方法和使用该密钥索引的密钥索引生成器,以通过减少信息量来减少传输开销。 当新成员加入组时,第一字段组合单元(910)将连接信息插入到密钥索引的第一字段中。 第二场合成单元(920)将与每个新成员相对应的节点编号插入到密钥索引的第二字段中,以便从接收侧选择加密密钥的必要密钥。 接收侧识别与重新密钥索引的第二字段中包括的节点号相对应的节点的祖先节点作为更新目标节点。
-
公开(公告)号:KR1020080028696A
公开(公告)日:2008-04-01
申请号:KR1020060094324
申请日:2006-09-27
Applicant: 삼성전자주식회사
CPC classification number: H04L9/0836 , H04L9/0891
Abstract: A method for updating a group key and a group key updating device using the same are provided to select nodes requiring a self update and to perform a key update for the selected nodes. A method for updating a group key includes the steps of: updating keys of leaf nodes corresponding to new members in response to the joining of at least two new members for a group(S210); checking whether all of two descendent nodes of a parent node are updated when updating a key of the parent node among the leaf nodes(S220); setting one of the two descendent nodes as an updating node by comparing node IDs of the two descendent nodes if all of the two descendent nodes are updated(S230); and updating a key of the parent node using the updating node(S240). At least two new members join in the group using a batch processing.
Abstract translation: 提供一种用于更新组密钥的方法和使用其的组密钥更新设备,以选择需要自身更新的节点,并对所选择的节点执行密钥更新。 一种用于更新组密钥的方法包括以下步骤:响应于组中的至少两个新成员的加入,更新对应于新成员的叶节点的密钥(S210); 在叶节点中更新父节点的密钥时,检查父节点的两个后代节点是否被更新(S220); 如果所有两个后代节点都被更新,则通过比较两个后代节点的节点ID来设置两个后代节点之一作为更新节点(S230); 以及使用所述更新节点更新所述父节点的密钥(S240)。 至少有两名新成员使用批处理加入该组。
-
公开(公告)号:KR1020080001377A
公开(公告)日:2008-01-03
申请号:KR1020060059792
申请日:2006-06-29
Applicant: 삼성전자주식회사
CPC classification number: H04L9/0891 , H04L9/0836
Abstract: A group key update method and a group key update device using the same are provided to effectively supply a requested key to a member which does not perform a self update. A group key update method includes the steps of: determining a key update start node on a binary tree(S110); updating a key of the key update start node(S120); updating a key of a parent node of the node corresponding to the updated key using the updated key(S130); updating a key corresponding to a root node of the binary tree by repeating the step of updating the key of the parent node(S140); and if the parent node has a group member corresponding to a child node except the node corresponding to the updated key, encoding and transmitting the key of the parent key to the group member with a corresponding scheme to the child node. In the encoding and transmitting step, the parent node key is encoded and transmitted by the child key.
Abstract translation: 提供组密钥更新方法和使用该组密钥更新方法的组密钥更新设备以有效地将请求密钥提供给不执行自身更新的成员。 组密钥更新方法包括以下步骤:确定二叉树上的密钥更新开始节点(S110); 更新密钥更新开始节点的密钥(S120); 使用更新的密钥更新与更新的密钥对应的节点的父节点的密钥(S130); 通过重复更新父节点的密钥的步骤来更新与二叉树的根节点相对应的密钥(S140); 并且如果父节点具有对应于除更新密钥对应的节点之外的子节点的组成员,则使用相应的方案将父密钥的密钥编码并发送给组成员到子节点。 在编码和发送步骤中,父节点密钥被子密钥编码和发送。
-
公开(公告)号:KR1020070119254A
公开(公告)日:2007-12-20
申请号:KR1020060053638
申请日:2006-06-14
Applicant: 삼성전자주식회사
IPC: H04N19/467 , H04N21/8358
CPC classification number: H04N19/467 , G06T1/0035 , G06T2201/0053
Abstract: A video watermarking apparatus in a compression area and a method thereof are provided to insert a watermark directly in a compression area, and to reduce the load of a memory. A spatial area information analyzer(31) receives bit-streams compressed in an encoder and extracts information about a spatial area of an image for code words forming the bit-stream. An area divider(32) groups the code words according to divided spatial areas based on the information about the spatial area extracted from the spatial area information analyzer(31). An area sign determining module(33) determines the signs of each area. A watermark bit insertion module(34) inserts a watermark into each area according to the sign determined by the area sign determining module(33).
Abstract translation: 提供了一种压缩区域中的视频水印设备及其方法,用于将水印直接插入压缩区域,并减少存储器的负载。 空间区域信息分析器(31)接收在编码器中压缩的比特流,并提取关于形成比特流的码字的图像的空间区域的信息。 区域划分器(32)基于从空间区域信息分析器(31)提取的关于空间区域的信息,根据划分的空间区域对代码字进行分组。 区域符号确定模块(33)确定每个区域的符号。 水印位插入模块(34)根据由区域符号确定模块(33)确定的符号将水印插入每个区域。
-
-
-
-
-
-
-
-
-
Search Results
76
records
(took 0.031 seconds)
