公开(公告)号：US20240022589A1

公开(公告)日：2024-01-18

申请号：US18032632

申请日：2020-10-27

Applicant: NEC Corporation

Inventor： Masaki INOKUCHI ,  Tomohiko YAGYU ,  Shunichi KINOSHITA ,  Hirofumi UEDA

IPC: H04L9/40

CPC classification number: H04L63/1433 ,  H04L63/1491 ,  H04L63/20 ,  H04L63/104

Abstract: A risk analysis is conducted without increasing the computational cost. A grouping means groups a plurality of hosts included in a system to be analyzed into a plurality of groups. A virtual analysis element generation means generates at least one virtual analysis element for each of the plurality of groups. An analysis means analyzes whether an attack against the virtual analysis element being an end point of an attack is possible by using the virtual analysis element. An analysis target element determination means determines, as a target of a risk analysis, a host corresponding to the virtual analysis element included in a path where the attack occurs among hosts included in the system to be analyzed. An analysis means analyzes whether an attack against the host being the end point of the attack is possible for the host determined as a target of the risk analysis.

公开(公告)号：US20230064102A1

公开(公告)日：2023-03-02

申请号：US17795116

申请日：2020-02-05

Applicant: NEC Corporation

Inventor： Shunichi KINOSHITA

IPC: G06F21/57

Abstract: An analysis system includes: an extraction unit which extracts an unconfirmed fact that contributes to the execution of an executable attack in a system to be diagnosed among unconfirmed facts, which are facts that indicate unknown information of the system to be diagnosed or a device among facts that indicate a state related to security in the system to be diagnosed or the device included in the system to be diagnosed.

公开(公告)号：US20220414229A1

公开(公告)日：2022-12-29

申请号：US17775941

申请日：2019-11-15

Applicant: NEC Corporation

Inventor： Yoshinobu OHTA ,  Hirofumi UEDA ,  Shunichi KINOSHITA ,  Ryo MIZUSHIMA

IPC: G06F21/57

Abstract: An analysis unit 6 generates one or more pairs of a start point fact which is a fact representing possibility of the attack in a device that is a start point and an end point fact which is a fact representing possibility of the attack in the device that is an end point, analyzes, for each pair, whether or not it is possible to derive the end point fact from the start point fact, based on facts representing states of the devices generated based on information regarding the device that is the start point and information regarding the device that is the end point, the start point fact, and one or more analysis rules for analyzing the attack, and generates an attack scenario in a case where it is possible to derive the end point fact from the start point fact.

公开(公告)号：US20220329618A1

公开(公告)日：2022-10-13

申请号：US17641511

申请日：2019-09-27

Applicant: NEC Corporation

Inventor： Yoshinobu OHTA ,  Hirofumi UEDA ,  Shunichi KINOSHITA ,  Ryo MIZUSHIMA

IPC: H04L9/40 ,  G06F21/57

Abstract: The analysis unit generates one or more pairs of a start point fact which is a fact representing possibility of attack in a device that is a start point and an end point fact which is a fact representing possibility of attack in a device that is an end point. The analysis unit analyzes, for each pair, whether or not it is possible to derive the end point fact from the start point fact. The analysis unit generates an attack pattern that includes at least an attack condition, an attack result, and an attack means, in a case where it is possible to derive the end point fact from the start point fact.

公开(公告)号：US20220279007A1

公开(公告)日：2022-09-01

申请号：US17626204

申请日：2019-07-17

Applicant: NEC Corporation

Inventor： Shunichi KINOSHITA

IPC: H04L9/40

Abstract: An analysis system includes: a configuration information acquisition unit which acquires configuration information from an agent which collects the configuration information of a device by scanning the device included in a system to be diagnosed; a generation unit which generates one or more initial facts which indicates a situation relating to security in the system to be diagnosed or the device based on the configuration information; and an analysis unit which analyzes a flow of an attack which is executable in the system to be diagnosed based on the one or more initial facts.

公开(公告)号：US20170265067A1

公开(公告)日：2017-09-14

申请号：US15500186

申请日：2015-08-03

Applicant: NEC Corporation

Inventor： Hirofumi UEDA ,  Shunichi KINOSHITA ,  Norio YAMAGAKI ,  Kazuaki NAKAJIMA

IPC: H04W8/26 ,  H04L29/06

CPC classification number: H04W8/26 ,  G06F13/00 ,  H04L29/06 ,  H04L45/306 ,  H04L69/22 ,  H04W24/02 ,  H04W84/18

Abstract: Provided are a communication terminal device and the like that enable efficient transmission and reception of information among a plurality of communication terminal devices, even in an environment with no communication management device that manages and controls the communication terminal devices in a centralized manner. The communication terminal device includes a reception control unit for determining a reception port number on the basis of a first identifier that can identify a first application; a filtering unit for setting the reception port number as a reception port number for the first application; and a transmission control unit for determining, on the basis of a second identifier that can identify a second application, a destination port number indicating a destination in a specific communication terminal device.

公开(公告)号：US20160323804A1

公开(公告)日：2016-11-03

申请号：US15108531

申请日：2014-12-05

Applicant: NEC CORPORATION

Inventor： Norihito FUJITA ,  Norio YAMAGAKI ,  Hirofumi UEDA ,  Shunichi KINOSHITA

IPC: H04W40/34 ,  H04B1/713 ,  H04L12/26 ,  H04M1/725

CPC classification number: H04W40/34 ,  H04B1/713 ,  H04L43/16 ,  H04M1/72519 ,  H04M2250/64 ,  H04W40/00 ,  H04W40/18 ,  H04W84/18

Abstract: A node device has a delivery predictability management part, a DTN communication part, and a user interface part. The delivery predictability management part stores, for each destination node, delivery predictabilities including a delivery predictability for the destination node calculated by a local node and a delivery predictability for the destination node calculated by a neighboring node. The DTN communication part refers to the delivery predictabilities for each destination node and selects a next hop node in transferring transfer data from the local node to the destination node. The user interface part allows selection of a destination node for DTN communication with the local node as a source node on a basis of the delivery predictabilities for each destination node.

Abstract translation: 节点设备具有传递可预测性管理部分，DTN通信部分和用户接口部分。 递送可预测性管理部分为每个目的地节点存储包括由本地节点计算的目的地节点的递送可预测性和由相邻节点计算的目的地节点的递送可预测性的递送可预测性。 DTN通信部分参考每个目的地节点的传送可预测性，并选择将传输数据从本地节点传送到目的地节点的下一跳节点。 用户接口部分允许基于每个目的地节点的递送可预测性来选择用于与本地节点进行DTN通信的目的地节点作为源节点。