-
公开(公告)号:KR1020130116409A
公开(公告)日:2013-10-24
申请号:KR1020120025228
申请日:2012-03-12
Applicant: 삼성전자주식회사 , 서울대학교산학협력단
Abstract: PURPOSE: A method for diagnosing authority required by application and a device thereof are provided to grasp authority needed when executing the application by static analyzing a source code without actually executing the application. CONSTITUTION: An application acquisition part (410) acquires the source code of an application from the application. A control flow analysis part (420) generates a function list including a function included in the source code. An authority diagnosis part (430) determines authority required by the function list when the application is executed at the device. The application acquisition part acquires additional information including authority information requested in advance. The authority diagnosis part compares the authority information, which is requested in advance, with the determined authority for outputting a compared result. [Reference numerals] (410) Application acquisition part; (420) Control flow analysis part; (430) Authority diagnosis part; (AA) Diagnosis result; (BB) Analysis result (function list)
Abstract translation: 目的:提供一种用于诊断应用程序所需的权限的方法及其设备,以通过静态分析源代码来掌握执行应用程序所需的权限,而无需实际执行应用程序。 构成:应用程序获取部分(410)从应用程序获取应用程序的源代码。 控制流分析部件(420)生成包括源代码中的功能的功能列表。 当在设备上执行应用时,权限诊断部分(430)确定功能列表所需的权限。 应用获取部分获取包括预先请求的权限信息的附加信息。 权限诊断部分将预先请求的权限信息与确定的输出比较结果的权限进行比较。 (附图标记)(410)应用获取部分; (420)控制流程分析部分; (430)权限诊断部分; (AA)诊断结果; (BB)分析结果(功能列表)
-
公开(公告)号:KR1020080112067A
公开(公告)日:2008-12-24
申请号:KR1020070097381
申请日:2007-09-27
Applicant: 삼성전자주식회사
Abstract: A method for restricting an operation of a device and an apparatus therefor are provided to update a waste list by using a waste list which is additional information of contents, thereby maintaining latest information of the waste list of the device without additional update. A method for limiting an operation of a device comprises the following steps. It is determined whether the device is a wasted device based on a waste list for wasted devices(220). It is determined whether a DRM(Digital Right Management) module of the device is operated based on the determination result(230). An operation of the device is selectively limited based on the determination result(240).
Abstract translation: 提供一种用于限制设备及其设备的操作的方法,通过使用作为内容的附加信息的废物列表来更新废物列表,从而保持设备的废物列表的最新信息而不需要额外的更新。 一种用于限制设备的操作的方法包括以下步骤。 基于浪费的设备的废物列表来确定设备是否是浪费的设备(220)。 基于确定结果确定设备的DRM(数字版权管理)模块是否被操作(230)。 基于确定结果(240)选择性地限制设备的操作。
-
Patent Agency Ranking
公开(公告)号:KR1020080093331A
公开(公告)日:2008-10-21
申请号:KR1020070037152
申请日:2007-04-16
Applicant: 삼성전자주식회사
CPC classification number: H04L9/3228 , H04L9/0869 , H04L9/30
Abstract: An authentication method and an authentication apparatus are provided to prevent a large number of devices from being registered by adjusting the number of registerable devices in an authentication list. A random number generator(470) generates a first random number. A transmitter(460) transmits a first random number, a public key of a first device, and expiry information of the first device. A receiver(410) receives a second random number and expiry information of a second device. The second random number is generated by the second device and encrypted by the public key of the first device, when the first device is not expired. A decoder(420) decodes the second random number using a secret key of the first device. A device expiry determining unit(430) determines whether the second device is expired according to the expiry information of the second device. A key generator(440) selectively generates a temporary key by using the first and second random numbers and a determined result from the device expiry determining unit. An encrypting unit(450) encrypts the public key for encrypting a contents key using the temporary key, when the temporary key is generated.
Abstract translation: 提供了一种认证方法和认证装置,以通过调整认证列表中的可注册设备的数量来防止大量设备被注册。 随机数生成器(470)生成第一随机数。 发送器(460)发送第一设备的第一随机数,公钥,以及第一设备的到期信息。 接收机(410)接收第二设备的第二随机数和到期信息。 第二个随机数由第二个设备生成,并且当第一个设备没有到期时被第一个设备的公钥加密。 解码器(420)使用第一设备的秘密密钥解码第二随机数。 设备到期确定单元(430)根据第二设备的到期信息确定第二设备是否到期。 密钥发生器(440)通过使用第一和第二随机数和来自设备到期确定单元的确定结果选择性地生成临时密钥。 当生成临时密钥时,加密单元(450)使用临时密钥加密用于加密内容密钥的公开密钥。
-
公开(公告)号:KR1020080090939A
公开(公告)日:2008-10-09
申请号:KR1020070034421
申请日:2007-04-06
Applicant: 삼성전자주식회사
IPC: G06F9/44
Abstract: A method for generating a firmware update file, and an update method and a device using the same are provided to restrict updating firmware embedded in hardware by discriminating a model code representing a compatible hardware group of a firmware program code and the model code representing property for discriminating the hardware included in the group. A firmware generator(610) generates a data body including an updated firmware program code. A header generator(620) generates a data header including a first model code representing a compatible hardware group of the firmware program code and a second model code representing property for discriminating hardware included in the group. The first and second model codes are a model code of the hardware applying the generated data body. A combiner(630) generates a firmware update file by combining the data body and the data header. The combiner includes an electronic sign unit electronically singing the data body and the data header to prevent forgery/alteration and an encryptor encrypting the data body including the firmware program code.
Abstract translation: 提供了一种用于生成固件更新文件的方法,以及更新方法和使用该固件更新文件的装置,以通过区分表示固件程序代码的兼容硬件组的模型代码和代表属性的模型代码来限制更新嵌入在硬件中的固件 区分组中包含的硬件。 固件生成器(610)生成包括更新的固件程序代码的数据主体。 标题生成器(620)生成包括代表固件程序代码的兼容硬件组的第一模型代码和表示用于区分组中包括的硬件的属性的第二模型代码的数据标题。 第一和第二模型代码是应用生成的数据体的硬件的模型代码。 组合器(630)通过组合数据体和数据头来产生固件更新文件。 组合器包括以电子方式唱歌数据体和数据标题以防止伪造/改变的电子标志单元,以及加密器加密包括固件程序代码的数据体。
-
公开(公告)号:KR1020080090938A
公开(公告)日:2008-10-09
申请号:KR1020070034420
申请日:2007-04-06
Applicant: 삼성전자주식회사
IPC: G06F15/16
CPC classification number: H04L63/061 , H04L43/0858 , H04L63/08 , H04L63/10 , H04L63/12 , H04L63/18 , H04L67/141 , H04L67/32 , H04L67/42 , H04L69/324 , H04W12/04 , H04W64/00
Abstract: A method and a device for controlling transmission of contents are provided to control the transmission by initializing a communication channel, transmitting the contents through the communication channel, verifying several times whether the contents are transmitted within transmission allowance, and determining the transmission depending on a verification result. A session setting unit(610) initializes a communication channel for transmitting contents, and a data transmitter(620) transmits the contents through the initialized communication channel. A verifier(630) verifies several times whether the contents are transmitted within transmission allowance. A data transmission controller(640) determines the transmission of the contents depending on a verification result. The data transmission controller determines the transmission of the contents depending on a ratio between the number of all verifications and the number of transmission performed within the transmission allowance. The data transmission controller stops transmitting the contents when the ratio is smaller than a threshold value.
Abstract translation: 提供了一种用于控制内容传输的方法和装置,用于通过初始化通信信道,通过通信信道发送内容来控制传输,多次验证内容是否在传输容限内传输,并根据验证确定传输 结果。 会话设置单元(610)初始化用于发送内容的通信信道,数据发送器(620)通过初始化的通信信道发送内容。 验证器(630)多次验证内容是否在传输允许范围内传输。 数据传输控制器(640)根据验证结果确定内容的传输。 数据传输控制器根据所有验证的数量与在传输限制内执行的传输次数之间的比率来确定内容的传输。 当比率小于阈值时,数据传输控制器停止发送内容。
-
公开(公告)号:KR1020080090672A
公开(公告)日:2008-10-09
申请号:KR1020070033780
申请日:2007-04-05
Applicant: 삼성전자주식회사
CPC classification number: H04L9/0877 , H04L2209/60
Abstract: A method and an apparatus for protecting digital contents in a UMS(USB Mass Storage device) are provided to prevent the contents stored in the UMS device from being distributed without limitation, by enabling a user to register the UMS device in a USB host connected through the UMS device and a USB port directly. According to a method for managing registered data of a UMS(USB Mass Storage) device, a random key is generated by the request of a user(220). The generated key is displayed through user interface(230). The registered data is encoded by the generated key(240). The registered data is kept by a USB host connected to the UMS device in order to use the encoded contents of the UMS device(250).
Abstract translation: 提供了一种用于保护UMS(USB大容量存储设备)中的数字内容的方法和装置,以防止存储在UMS设备中的内容不受限制地分发,通过使用户能够将UMS设备注册到通过 UMS设备和USB端口。 根据用于管理UMS(USB大容量存储)设备的注册数据的方法,随机密钥由用户的请求生成(220)。 通过用户界面(230)显示生成的密钥。 注册的数据由生成的密钥(240)编码。 注册的数据由连接到UMS设备的USB主机保存,以便使用UMS设备的编码内容(250)。
-
公开(公告)号:KR1020080050937A
公开(公告)日:2008-06-10
申请号:KR1020070035174
申请日:2007-04-10
Applicant: 삼성전자주식회사
IPC: H04L9/32
CPC classification number: H04L9/3268 , H04L9/0844 , H04L2209/60 , H04L2209/80
Abstract: An authenticating method and an authenticating apparatus are provided to enable a user to authenticate devices wirelessly by authenticating an external device according to a received authentication execution command. An authenticating apparatus includes a receiver(210), an authentication history unit(240), an output unit(250), and an authenticating unit(260). The receiver receives an authentication request signal. The authentication history unit determines whether an external device transmitting the authentication request signal received by the receiver is previously authenticated. The output unit selectively outputs a token indicating that the external device is to be authenticated according to the determination of the authentication history unit. The authenticating unit authenticates the external device according to a received authentication execution command, when the authentication execution command is received.
Abstract translation: 提供认证方法和认证装置,以使用户能够根据接收到的认证执行命令通过认证外部设备来无线认证设备。 认证装置包括接收器(210),认证历史单元(240),输出单元(250)和认证单元(260)。 接收器接收认证请求信号。 认证历史单元确定是否事先认证了发送接收者接收到的认证请求信号的外部设备。 输出单元根据认证历史单元的确定选择性地输出表示外部设备要认证的令牌。 当接收到认证执行命令时,认证单元根据接收到的认证执行命令认证外部设备。
-
-
-
-
-
-
Search Results
77
records
(took 0.028 seconds)
