公开(公告)号：KR1020090001536A

公开(公告)日：2009-01-09

申请号：KR1020070039722

申请日：2007-04-24

Applicant: (주)안랩시큐브레인 ,  이병철

Inventor： 이병철

IPC: G06F17/30 ,  G06F21/32 ,  G06Q20/10

CPC classification number: G06F17/30032 ,  G06F17/30035 ,  G06F21/32 ,  G06Q20/1085

Abstract: A method and a device for controlling security to keep the security in an unmanned automatic system are provided to manage and control the security suitable for the unmanned automatic system by preventing execution of a process or task authority set by a manager. A database(120) stores information for action elements of an unmanned system. A control module(110) receives a task request signal from a process of the unmanned system, and determines permission of the action corresponding to the task request signal based on at least one of an ID or the task request signal of a permitted action list stored in the database. The control module outputs an error signal to the process when the permission is not determined.

Abstract translation: 提供一种用于控制安全性以保持无人自动系统的安全性的方法和装置，用于通过防止执行由管理者设置的进程或任务授权来管理和控制适合于无人自动系统的安全性。 数据库（120）存储无人系统的动作元素的信息。 控制模块（110）从无人系统的处理接收任务请求信号，并基于所存储的许可动作列表的ID或任务请求信号中的至少一个来确定对应于任务请求信号的动作的许可 在数据库中。 当未确定权限时，控制模块向该过程输出错误信号。

公开(公告)号：KR100657353B1

公开(公告)日：2006-12-14

申请号：KR1020050067968

申请日：2005-07-26

Applicant: (주)안랩시큐브레인 ,  전남대학교산학협력단

Inventor： 김정순 ,  김민수 ,  노봉남 ,  이병철 ,  김동근 ,  이재서 ,  조주봉 ,  임종혁 ,  정종민 ,  최민호 ,  이승용

IPC: G06F15/00

Abstract: A security system capable of accepting diverse access control policies, and a method and a recording medium thereof are provided to easily manage and verify the policies for access control, and enable a manager to easily modify design to apply diverse security models. A security manager(30) determines access permission to an object(70) of a subject(10) by using access right information preset to the object accessed from the subject and action performed to the object from the subject. A security agent(20) requests the access permission to the object of the subject by offering subject, object, and action information to the security manager according to a request from the subject. A security control mediation module(50) finally determines the access permission to the object of the subject by checking the abnormal action through statistical analysis for the subject requesting the access permission. The security agency includes a message maker(21) forms the subject, object, and action information into a message.

Abstract translation: 提供一种能够接受多种访问控制策略的安全系统及其方法和记录介质，以便于管理和验证访问控制策略，并使管理员能够容易地修改设计以应用各种安全模型。 安全管理器（30）通过使用预设给从对象访问的对象的访问权信息和从对象对对象执行的动作来确定对对象（10）的对象（70）的访问许可。 安全代理（20）根据来自主体的请求向安全管理器提供主体，对象和动作信息，向主体的对象请求访问许可。 安全控制中介模块（50）通过针对请求访问权限的主体的统计分析来检查异常行为，最终确定对主体的对象的访问许可。 安全机构包括一个消息制作者（21）将消息中的主题，对象和动作信息组成一个消息。