公开(公告)号：KR20090065183A

公开(公告)日：2009-06-22

申请号：KR20070132650

申请日：2007-12-17

Applicant: KOREA ELECTRONICS TELECOMM ,  UNIV NAT CHONNAM IND FOUND

Inventor： KIM DONG WOOK ,  CHA GYU IL ,  KIM YOUNG HO ,  LIM EUN JI ,  KIM SOO YOUNG ,  JUNG SUNG IN ,  KIM MYUNG JOON ,  NOH BONG NAM ,  KIM JUNG SUN ,  KIM MIN SOO ,  LEE JAE SEO

IPC: H04L9/32 ,  G06F21/00

CPC classification number: G06F21/6218 ,  G06F21/604

Abstract: An apparatus and a method for automatically generating security policy of SELinux(Security Enhanced Linux) based on SELT(SELinux Template) are provided to automatically generate security policy by using an operation pattern of designated application. A check module stores an inputted file name to a binary list(S201). The check module checks an execution state of a process of binary based on the binary list(S202). The check module finishes a corresponding process of an executing binary(S203). A system call log traced by generating the process is stored(S204,S205). The traced system call log is refined into a data required for generating the security policy(S206~S208). Objects are grouped(S209). A SELT security policy file is recorded in a system(S210). A redundancy and collision are detected between the generated SELT security policy and existing security policies inside the system(S211,S212).

Abstract translation: 提供了一种基于SELT（SELinux模板）自动生成SELinux（Security Enhanced Linux）安全策略的设备和方法，通过使用指定应用程序的操作模式自动生成安全策略。 检查模块将输入的文件名存储到二进制列表（S201）。 检查模块基于二进制列表检查二进制进程的执行状态（S202）。 检查模块完成执行二进制码的相应处理（S203）。 存储通过生成处理跟踪的系统调用日志（S204，S205）。 跟踪的系统调用日志被细化为生成安全策略所需的数据（S206〜S208）。 对象被分组（S209）。 SELT安全策略文件被记录在系统中（S210）。 在生成的SELT安全策略和系统内现有的安全策略之间检测到冗余和冲突（S211，S212）。

公开(公告)号：KR100772523B1

公开(公告)日：2007-11-01

申请号：KR20060072649

申请日：2006-08-01

Applicant: KOREA ELECTRONICS TELECOMM

Inventor： LIM JAE DEOK ,  KIM YOUNG HO ,  RYU SEUNG HO ,  CHUNG BO HEUNG ,  KIM KI YOUNG

IPC: H04L12/22 ,  G06F15/16 ,  H04L12/28

CPC classification number: H04L63/1416 ,  H04L63/0263 ,  H04L69/16 ,  H04L69/161

Abstract: An apparatus and a method for detecting an intrusion using a pattern are provided to increase a processing speed by considerably reducing an overload caused as whether a packet is harmful is inspected by every rule whenever a packet is inputted. A rule generating unit(103) classifies intrusion detection rules into rules having a contents inspection part and rules not having the contents inspection part, assigns an index to respective rules, and outputs the same to a device that performs matching, and at the same time, stores them. An extracting unit(101) extracts a payload and an address of a packet, and outputs the same to the device. An inspecting unit(105) inspects a corresponding rule based on the index. The rule generating unit patternizes an IP address part with respect to the rules without the contents inspection part, among the intrusion detection rules.

Abstract translation: 提供一种用于使用模式检测入侵的装置和方法，用于通过显着减少由于每当输入分组时由每个规则检查分组是否有害而引起的过载而增加处理速度。 规则生成单元（103）将入侵检测规则分类为具有内容检查部分和不具有内容检查部分的规则的规则，向相应的规则分配索引，并将其输出到执行匹配的设备，并且同时 ，存储他们。 提取单元（101）提取分组的有效载荷和地址，并将其输出到设备。 检查单元（105）根据索引检查相应的规则。 在入侵检测规则中，规则生成单元相对于没有内容检查部分的规则对IP地址部分进行模式化。

公开(公告)号：KR20100058270A

公开(公告)日：2010-06-03

申请号：KR20080117019

申请日：2008-11-24

Applicant: KOREA ELECTRONICS TELECOMM

Inventor： YUN JE HOON ,  KIM YOUNG HO ,  KWON JONG HWA ,  PARK UNG HEE ,  PARK SANG MYEONG ,  KIM CHANG JOO

IPC: H01Q3/26 ,  H01Q3/00

Abstract: PURPOSE: An antenna is provided to obtain high isolation by attenuating a transmission signal which does not pass through an object. CONSTITUTION: A first antenna(2) and a second antenna(3) are vertically arranged with each other. A third antenna(4) and a fifth antenna(6) are symmetrical based on the plane formed by the first and second antennas. The third antenna and a fifth antenna are vertical to the first antenna. The inner cores of a feeding connector of the third and fifth antennas are arranged in the opposite direction. A fourth antenna(5) and a sixth antenna(7) are symmetrical based on the plane formed by the first and second antennas. The fourth antenna and the sixth antenna are horizontal to the first antenna.

Abstract translation: 目的：通过衰减不通过物体的传输信号，提供天线以获得高隔离度。 构成：第一天线（2）和第二天线（3）彼此垂直布置。 第三天线（4）和第五天线（6）基于由第一和第二天线形成的平面对称。 第三天线和第五天线垂直于第一天线。 第三和第五天线的馈电连接器的内芯布置在相反的方向。 第四天线（5）和第六天线（7）基于由第一和第二天线形成的平面对称。 第四天线和第六天线与第一天线水平。

公开(公告)号：KR100768091B1

公开(公告)日：2007-10-17

申请号：KR20060081309

申请日：2006-08-25

Applicant: KOREA ELECTRONICS TELECOMM

Inventor： KIM YOUNG HO ,  PARK SEONG SU

IPC: H03F3/45

CPC classification number: H03F3/45188 ,  H03F1/3211 ,  H03F3/45659 ,  H03F2200/513 ,  H03F2203/45056 ,  H03F2203/45288 ,  H03F2203/45302 ,  H03F2203/45311 ,  H03F2203/45352 ,  H03F2203/45364 ,  H03F2203/45374 ,  H03F2203/45392 ,  H03F2203/45394 ,  H03F2203/45481 ,  H03F2203/45642 ,  H03F2203/45681

Abstract: A triode region type transconductor circuit with a wide linear range is provided to offer a wide linear input range by using an input transistor with short channel length by overlapping a plurality of distortion transconductances with basic transconductance. A triode region type transconductor circuit with a wide linear range includes a first transconductor unit(61), and a second transconductor unit(62). The first transconductor unit(61) receives differential pair input voltage through a first differential input transistor, and outputs basic transconductance. The second transconductor unit(62) compensates linearity of the basic transconductance, and receives the differential pair input voltage through a second differential pair input transistor parallel connected to the first differential input transistor for generating distortion transconductance to expand a linear range of ultimate transconductance.

Abstract translation: 提供具有宽线性范围的三极管型跨导体电路，通过使用具有短沟道长度的输入晶体管，通过与多个具有基本跨导的失真跨导重叠来提供宽线性输入范围。 具有宽线性范围的三极管区型跨导体电路包括第一跨导单元（61）和第二跨导单元（62）。 第一跨导单元（61）通过第一差分输入晶体管接收差分对输入电压，并输出基本跨导。 第二跨导单元（62）补偿基本跨导的线性度，并且通过并联连接到第一差分输入晶体管的第二差分对输入晶体管接收差分对输入电压，用于产生畸变跨导以扩展最终跨导的线性范围。