公开(公告)号：US20190294798A1

公开(公告)日：2019-09-26

申请号：US16109870

申请日：2018-08-23

Applicant: HUAZHONG UNIVERSITY OF SCIENCE AND TECHNOLOGY

Inventor： Hai JIN ,  Weiqi Dai ,  Jun Deng ,  Deqing Zou

IPC: G06F21/57 ,  G06F21/53 ,  G06F21/44 ,  G06F21/62 ,  H04L29/06 ,  G06F9/54

Abstract: The present invention provides a TrustZone-based security isolation system for shared library, the system at least comprising: a sandbox creator, a library controller, and an interceptor, the sandbox creator, in a normal world, dynamically creating a sandbox isolated from a Rich OS, the interceptor, intercepting corresponding system-calling information and/or Android framework APIs by means of inter-process stack inspection, the library controller, performing analysis based on the intercepted system-calling information and/or Android framework APIs, redirecting a library function to the sandbox, and switching calling states of the library function in the sandbox as well as setting up a library authority. The present invention has good versatility, low cost and high security. It realizes isolation of the library without increasing the trusted bases in the Secure World of the TrustZone, effectively reducing the risk of being attacked.

公开(公告)号：US11301361B2

公开(公告)日：2022-04-12

申请号：US16774016

申请日：2020-01-28

Applicant: Huazhong University of Science and Technology

Inventor： Weiqi Dai ,  Hai Jin ,  Deqing Zou ,  Bingcheng Zhao

IPC: G06F11/36 ,  H04L9/00 ,  H04L9/06 ,  H04L9/32 ,  H04L29/06

Abstract: The present disclosure involves a sidechain testing system and method for improving security and stability of a smart contract.

公开(公告)号：US20200349054A1

公开(公告)日：2020-11-05

申请号：US16774016

申请日：2020-01-28

Applicant: Huazhong University of Science and Technology

Inventor： Weiqi Dai ,  Hai Jin ,  Deqing Zou ,  Bingcheng Zhao

IPC: G06F11/36 ,  H04L9/06 ,  H04L9/00

Abstract: The present disclosure involves a sidechain testing system and method for improving security and stability of a smart contract.

公开(公告)号：US10749880B2

公开(公告)日：2020-08-18

申请号：US16109846

申请日：2018-08-23

Applicant: HUAZHONG UNIVERSITY OF SCIENCE AND TECHNOLOGY

Inventor： Hai Jin ,  Weiqi Dai ,  Yan Xia ,  Deqing Zou

IPC: G06F21/56 ,  H04L29/06 ,  G06F21/62

Abstract: The present invention involves with a cloud tenant oriented method and system for protecting privacy data. The method comprises at least the following steps: analyzing event handler information and/or behavioral signature information of request information and determining an execution mode, selecting at least one node without a behavioral signature plot to execute the tenant request and recording an execution result, generating a behavioral signature plot based on the execution result, and dynamically detecting security-sensitive behavior based on the behavioral signature plot. The present invention ensures data security during processing of security-sensitive data for cloud services by adopting a technology based on behavioral signatures, and prevents attackers from exploiting vulnerabilities and bypassing security control to conduct malicious operations.

公开(公告)号：US12088742B2

公开(公告)日：2024-09-10

申请号：US17664767

申请日：2022-05-24

Applicant: Huazhong University of Science and Technology

Inventor： Weiqi Dai ,  Jinkai Liu ,  Hai Jin ,  Deqing Zou

IPC: H04L9/00 ,  H04L9/08 ,  H04L9/32

CPC classification number: H04L9/50 ,  H04L9/0819 ,  H04L9/3236

Abstract: The present invention provides an anti-trapdoor-leakage on-chain data restoration system, at least comprising: a blockchain node, for broadcasting transaction data of a request-initiating person to blockchain nodes and proposer nodes in other groups, respectively; and a proposer node, for performing computation of a Chameleon-Hash function using a key set that is generated by a key-generating module provided in the proposer node, packaging the transaction data to generate a new block, and distributing the new block to all the blockchain nodes so that the blockchain nodes update their respective underlying ledgers according to the new blocks broadcasted by the proposer. The system of the present invention not only realizes such functions as restoration and editing of the transaction data, but also protects operational security and reliability of blockchains.

公开(公告)号：US10754953B2

公开(公告)日：2020-08-25

申请号：US16109870

申请日：2018-08-23

Applicant: HUAZHONG UNIVERSITY OF SCIENCE AND TECHNOLOGY

Inventor： Hai Jin ,  Weiqi Dai ,  Jun Deng ,  Deqing Zou

IPC: G06F21/57 ,  G06F9/54 ,  G06F21/44 ,  G06F21/53 ,  G06F21/62 ,  H04L29/06

Abstract: The present invention provides a TrustZone-based security isolation system for shared library, the system at least comprising: a sandbox creator, a library controller, and an interceptor, the sandbox creator, in a normal world, dynamically creating a sandbox isolated from a Rich OS, the interceptor, intercepting corresponding system-calling information and/or Android framework APIs by means of inter-process stack inspection, the library controller, performing analysis based on the intercepted system-calling information and/or Android framework APIs, redirecting a library function to the sandbox, and switching calling states of the library function in the sandbox as well as setting up a library authority. The present invention has good versatility, low cost and high security. It realizes isolation of the library without increasing the trusted bases in the Secure World of the TrustZone, effectively reducing the risk of being attacked.