-
公开(公告)号:KR1020040002103A
公开(公告)日:2004-01-07
申请号:KR1020020037468
申请日:2002-06-29
Applicant: 한국전자통신연구원
IPC: G06F15/00
Abstract: PURPOSE: A system and a method for detecting intrusion using a hybrid neural network are provided to detect the intrusion including an unknown intrusion pattern and to process the intrusion in real-time. CONSTITUTION: A packet collector(110) collects a packet existed on the network. A packet preprocessor(120) patterns the collected packet through a preprocessing process in order to use the packet collected through the packet collector as an input value of the neural network. An intrusion detection pattern learning part(210) learns the patterned packet by receiving the patterned packet from the packet preprocessor and using the clustering neuron network, and clusters the intrusion detection pattern by using a data distribution and a frequency. An intrusion detection judging part(220) receives a clustering result value and the connection level information of the patterned packet, learns the intrusion detection judgment through the result value and the connection level information by using the learning neuron network, and detects the intrusion.
Abstract translation: 目的:提供一种使用混合神经网络检测入侵的系统和方法,用于检测包括未知入侵模式的入侵,并实时处理入侵。 构成:数据包收集器(110)收集网络上存在的数据包。 分组预处理器(120)通过预处理过程对收集的分组进行模式化,以便将通过分组收集器收集的分组用作神经网络的输入值。 入侵检测模式学习部分(210)通过从分组预处理器接收图案化分组并使用聚类神经元网络来学习图案化分组,并且通过使用数据分布和频率来聚类入侵检测模式。 入侵检测判断部分(220)接收聚类结果值和图案化分组的连接级信息,通过使用学习神经元网络通过结果值和连接级别信息学习入侵检测判断,并检测入侵。
-
公开(公告)号:KR1020060062882A
公开(公告)日:2006-06-12
申请号:KR1020040101877
申请日:2004-12-06
Applicant: 한국전자통신연구원
CPC classification number: G06F21/577
Abstract: 본 발명은 웹 응용프로그램 취약점 분석 지원 방법에 관한 것으로서, 웹페이지 분석 및 연관성 분석이 이루어지는 단계와, 웹 응용프로그램의 전체적인 구조와 취약점에 관련된 정보를 분석하는 단계와, 취약점 점검자에게 웹 응용프로그램 취약점 분석 업무를 지원하기 위해 웹페이지의 상호관계와 함께 웹페이지별 취약점 관련 요소 식별에 대한 그래픽 사용자 인터페이스를 제공하는 단계로 진행함으로써, 웹점검자와의 상호작용을 통해 취약점을 점검해 주는 취약점점검 지원 방법을 통해 웹 시스템에서 발생할 수 있는 보안상 취약점을 미리 진단 및 분석, 보고하여 웹 시스템에서 발생할 수 있는 보안사고를 미연에 방지할 수 있다.
웹 응용프로그램, 보안 취약점-
公开(公告)号:KR1020030056568A
公开(公告)日:2003-07-04
申请号:KR1020010086830
申请日:2001-12-28
Applicant: 한국전자통신연구원
IPC: H04L9/32
CPC classification number: H04L63/0869
Abstract: PURPOSE: An authentication method for protecting an agent and a message is provided, which defends the attack from a malicious agent and message level, and assures authentication at an initial access trial process. CONSTITUTION: According to the authentication method, a transmitter agent(1) request authentication to a facilitator(2) in order to transfer a message to an unknown agent. The facilitator performs mutual authentication with the transmitter agent and then exchanges a session key. The facilitator finds an agent coinciding with its object and performs mutual authentication, and then exchanges the session key. And the transmitter agent constitutes an independent security channel with a receiver agent(3) selected using the session key.
Abstract translation: 目的:提供一种用于保护代理和消息的认证方法,从而防止恶意代理和消息级别的攻击,并在初始访问试用过程中确保认证。 构成:根据认证方法,发送方代理(1)向促进者(2)请求认证,以便将消息传递给未知代理。 协调者与发射机代理执行相互认证,然后交换会话密钥。 协调人找到与其对象一致的代理,并进行相互认证,然后交换会话密钥。 并且发射机代理构成具有使用会话密钥选择的接收方代理(3)的独立安全信道。
-
公开(公告)号:KR100372590B1
公开(公告)日:2003-02-15
申请号:KR1020010028599
申请日:2001-05-24
Applicant: 한국전자통신연구원
IPC: H04L12/28
Abstract: PURPOSE: A method of assigning a link capacity in a VPN(Virtual Private Network) is provided to request reassignment from a manager by a VPN subscriber when transmissions are congested or transmissions are reduced in a VPN, in order to dynamically control a capacity of a virtual link, thereby obtaining economical benefits. CONSTITUTION: A VPN manager is assigned with an initial link capacity(CI) from a basic communication network manager while setting up a virtual link(S1). The VPN manager operates a self-subscribed VPN with the initial link capacity(CI)(S2). If a request of changing a capacity of the virtual link is generated owing to increased or reduced transmissions, the VPN manager compares a demanded link capacity(SI) with the initial link capacity(CI)(S3). If the demanded link capacity(SI) is smaller than the initial link capacity(CI), the VPN manager requests the demanded link capacity(SI)(S4), and is assigned with the first changing link capacity(RI1) having the same size as the demanded link capacity(SI)(S5).
Abstract translation: 目的:提供一种在VPN(虚拟专用网络)中分配链路容量的方法,以便在VPN中传输拥塞或传输减少时请求由VPN用户从管理器重新分配,以便动态地控制 虚拟链接,从而获得经济效益。 构成:在建立虚拟链路(S1)时,VPN管理器被分配来自基本通信网络管理器的初始链路容量(CI)。 VPN管理器使用初始链路容量(CI)(S2)操作自签署的VPN。 如果由于传输增加或减少而产生改变虚拟链路的容量的请求,则VPN管理器将请求的链路容量(SI)与初始链路容量(CI)进行比较(S3)。 如果所需链路容量(SI)小于初始链路容量(CI),则VPN管理器请求所需链路容量(SI)(S4),并且分配具有相同大小的第一变化链路容量(RI1) 作为要求的链路容量(SI)(S5)。
-
公开(公告)号:KR101787472B1
公开(公告)日:2017-10-18
申请号:KR1020160071188
申请日:2016-06-08
Applicant: 한국전자통신연구원
Abstract: 색인태그갱신장치및 방법이개시된다. 본발명의일실시예에따른색인태그갱신장치는 B+ 트리의리프노드(leaf node)에상응하는고유번호뒤에순차적으로추가번호를연결하여생성된색인태그를암호화된데이터항목에상응하는키 값에순차적으로할당하는색인태그생성부; 상기 B+ 트리의노드에새로운데이터항목이삽입되는경우, 색인태그삽입과정을수행하여상기노드의데이터항목들의색인태그를갱신하는제1 색인태그갱신부및 상기노드의데이터항목이삭제되는경우, 색인태그삭제과정을수행하여상기데이터항목들의색인태그를갱신하는제2 색인태그갱신부를포함한다.
Abstract translation: 公开了一种索引标签更新装置和方法。 根据本发明的实施例的索引标签更新装置在与B +树的叶节点相对应的唯一编号之后顺序地关联附加编号以生成索引标签,该索引标签是与加密数据项对应的密钥值 索引标签生成单元,用于顺序分配索引标签; 第一索引标签更新器,用于当新数据项被插入到B +节点中时,通过执行索引标签插入过程来更新节点的数据项的索引标签, 以及第二索引标签更新单元,用于通过执行标签删除处理来更新数据项的索引标签。
-
Patent Agency Ranking
公开(公告)号:KR100459767B1
公开(公告)日:2004-12-03
申请号:KR1020020037468
申请日:2002-06-29
Applicant: 한국전자통신연구원
IPC: G06F15/00
Abstract: PURPOSE: A system and a method for detecting intrusion using a hybrid neural network are provided to detect the intrusion including an unknown intrusion pattern and to process the intrusion in real-time. CONSTITUTION: A packet collector(110) collects a packet existed on the network. A packet preprocessor(120) patterns the collected packet through a preprocessing process in order to use the packet collected through the packet collector as an input value of the neural network. An intrusion detection pattern learning part(210) learns the patterned packet by receiving the patterned packet from the packet preprocessor and using the clustering neuron network, and clusters the intrusion detection pattern by using a data distribution and a frequency. An intrusion detection judging part(220) receives a clustering result value and the connection level information of the patterned packet, learns the intrusion detection judgment through the result value and the connection level information by using the learning neuron network, and detects the intrusion.
Abstract translation: 目的:提供一种使用混合神经网络检测入侵的系统和方法,以检测包括未知入侵模式的入侵并实时处理入侵。 构成:分组收集器(110)收集网络上存在的分组。 分组预处理器(120)通过预处理过程对收集的分组进行分组,以便将通过分组收集器收集的分组用作神经网络的输入值。 入侵检测模式学习部分(210)通过从分组预处理器接收图案化分组并使用聚类神经元网络来学习图案化分组,并且通过使用数据分布和频率来聚类入侵检测图案。 入侵检测判断部分(220)接收聚类结果值和图案化分组的连接级别信息,通过使用学习神经元网络的结果值和连接级别信息来学习入侵检测判断,并检测入侵。
-
公开(公告)号:KR1020030069241A
公开(公告)日:2003-08-27
申请号:KR1020020008663
申请日:2002-02-19
Applicant: 한국전자통신연구원
IPC: G06F15/00
Abstract: PURPOSE: A device and method for chasing the root of an invader is provided to execute a reverse chase of the root of an invader sequentially without changing components of a network through all networks including the Internet. CONSTITUTION: A detection module(7) detects an invasion and analyzes an invasion-detected system. A reverse chase agent(2) obtains an IP address of a previous system based on traces created in the system caused by an invasion. A server(4) receives an IP address of the system analyzed from the detection module(7) and the reverse chase agent(2), and monitors/manages a chase state of the reverse chase agent(2). An agent installation module(5) installs the reverse chase agent(2) in the system of the IP address being supplied from the server(4). An analysis module(3) communicates the reverse chase agent(2) with the server(4) safely and analyzes the system based on the obtained IP address. A data managing module(6) stores a series of chase and analysis processes being supplied from the server(4) and supplies data necessary for a searching process to the server(4).
Abstract translation: 目的:提供用于追逐入侵者根的设备和方法,以顺序地执行侵入者的根的反向追逐,而不需要通过包括因特网在内的所有网络改变网络的组件。 构成:检测模块(7)检测入侵并分析入侵检测系统。 反向追踪代理(2)基于由入侵引起的在系统中创建的跟踪获得先前系统的IP地址。 服务器(4)从检测模块(7)和反向追踪代理(2)接收分析的系统的IP地址,并监视/管理反向追踪代理(2)的追逐状态。 代理安装模块(5)将逆向追踪代理(2)安装在从服务器(4)提供的IP地址的系统中。 分析模块(3)安全地将反向追踪代理(2)与服务器(4)进行通信,并根据获得的IP地址对系统进行分析。 数据管理模块(6)存储从服务器(4)提供的一系列追逐和分析过程,并向服务器(4)提供搜索过程所需的数据。
-
公开(公告)号:KR1020020089741A
公开(公告)日:2002-11-30
申请号:KR1020010028599
申请日:2001-05-24
Applicant: 한국전자통신연구원
IPC: H04L12/28
CPC classification number: H04L47/70 , H04L12/4641
Abstract: PURPOSE: A method of assigning a link capacity in a VPN(Virtual Private Network) is provided to request reassignment from a manager by a VPN subscriber when transmissions are congested or transmissions are reduced in a VPN, in order to dynamically control a capacity of a virtual link, thereby obtaining economical benefits. CONSTITUTION: A VPN manager is assigned with an initial link capacity(CI) from a basic communication network manager while setting up a virtual link(S1). The VPN manager operates a self-subscribed VPN with the initial link capacity(CI)(S2). If a request of changing a capacity of the virtual link is generated owing to increased or reduced transmissions, the VPN manager compares a demanded link capacity(SI) with the initial link capacity(CI)(S3). If the demanded link capacity(SI) is smaller than the initial link capacity(CI), the VPN manager requests the demanded link capacity(SI)(S4), and is assigned with the first changing link capacity(RI1) having the same size as the demanded link capacity(SI)(S5).
Abstract translation: 目的:提供一种在VPN(虚拟专用网络)中分配链路容量的方法,以便在传输拥塞或在VPN中传输减少时要求VPN管理员从VPN管理员重新分配,以便动态地控制VPN的容量 虚拟链接,从而获得经济效益。 规定:在设置虚拟链路时,从基本通信网络管理器分配一个VPN管理器的初始链路容量(CI)(S1)。 VPN管理员运行具有初始链路容量(CI)的自订订VPN(S2)。 如果由于增加或减少的传输而产生改变虚拟链路的容量的请求,则VPN管理器将所请求的链路容量(SI)与初始链路容量(CI)进行比较(S3)。 如果所请求的链路容量(SI)小于初始链路容量(CI),则VPN管理器请求所请求的链路容量(SI)(S4),并且分配具有相同大小的第一改变链路容量(RI1) 作为所需的链路容量(SI)(S5)。
-
9.发明授权암호화된 데이터에 대한 색인 태그 생성 방법, 색인 태그를 이용한 암호화된 데이터 검색 방법 및 이를 위한 데이터베이스 장치 有权为加密数据生成索引标签的方法。 使用索引标签和数据库设备搜索加密数据的方法
公开(公告)号:KR101703828B1
公开(公告)日:2017-02-08
申请号:KR1020150143778
申请日:2015-10-15
Applicant: 한국전자통신연구원
IPC: G06F17/30
Abstract: 암호화된데이터에대한색인태그생성방법, 색인태그를이용한암호화된데이터검색방법및 이를위한데이터베이스장치가개시된다. 본발명의일실시예에따른암호화된데이터에대한색인태그생성방법은 B+ 트리의루트노드(root node)부터상기 B+ 트리의모든노드들에대하여고유번호를할당하는단계; 상기 B+ 트리의리프노드(leaf node)가상기리프노드에상응하는고유번호뒤에순차적으로추가번호를연결하여색인태그를생성하는단계; 및상기색인태그를암호화된데이터에상응하는키 값에순차적으로할당하는단계를포함한다.
-
公开(公告)号:KR100614931B1
公开(公告)日:2006-08-25
申请号:KR1020040025501
申请日:2004-04-13
Applicant: 한국전자통신연구원
IPC: G06Q50/10
Abstract: 본 발명은 웹 응용프로그램에서 발생할 수 있는 취약점을 분석하는 웹 응용프로그램 취약점 분석 장치 및 방법에 관한 것으로, 상기 웹 응용프로그램에 의해 웹 서버의 보안상 침해의 소지가 있는 취약점을 내포할 것으로 예상되는 웹 페이지들의 정보를 제공해줌으로써, 보안상의 취약점을 미리 진단 및 분석하여 상기 웹 응용프로그램에서 발생할 수 있는 보안사고를 미연에 방지하는 것이다.
이에, 본 발명은 웹 응용프로그램들 간의 관계를 도식화해주는 웹 연관성 분석 맵과, 웹 페이지들을 방문하여 게시판, 다운로드 스크립트, 관리자 페이지, 사용자 입력이 가능한 페이지, 숨김 속성변수를 포함한 페이지, 불필요하거나 개발 중인 페이지, 개발자의 주석을 포함한 페이지, 회원 페이지 등의 정보를 수집하는 정보수집모듈과 상기 정보수집모듈에 의해 식별된 웹 페이지들을 대상으로 모의공격수행을 지원하는 모의공격수행 지원모듈로 구성된다.
웹 응용프로그램, 보안, 웹 서버, 정보수집모듈, 모의공격수행 지원모듈
-
-
-
-
-
-
-
-
-
Search Results
13
records
(took 0.019 seconds)
