公开(公告)号：US20160378535A1

公开(公告)日：2016-12-29

申请号：US15092769

申请日：2016-04-07

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Soo-Cheol OH ,  Dae-Won Kim ,  Sun-Wook Kim ,  Jong-Bae Moon ,  Myeong-Hoon Oh ,  Byeong-Thaek Oh ,  Jung-Hyun Cho ,  Seong-Woon Kim ,  Hag-Young Kim ,  Ji-Hyeok Choi

IPC: G06F9/455

CPC classification number: G06F9/45558 ,  G06F9/4451 ,  G06F9/452 ,  G06F2009/45583 ,  G06F2009/45595

Abstract: Disclosed herein are an apparatus and method for in-memory-based virtual desktop service. The apparatus for in-memory-based virtual desktop service includes a connection broker for performing a task for coordinating a delivery protocol that is used between at least one user terminal that uses virtual desktop service and multiple servers that provide the virtual desktop service, a resource pool for providing software resources including an Operating System (OS) for the virtual desktop service; and virtual machine infrastructure for supporting hardware resources, and dynamically allocating software stored in the software resources to the hardware resources.

Abstract translation: 本文公开了一种用于基于内存的虚拟桌面服务的装置和方法。 用于基于内存的虚拟桌面服务的装置包括用于执行用于协调在使用虚拟桌面服务的至少一个用户终端和提供虚拟桌面服务的多个服务器之间使用的传送协议的任务的连接代理，资源 用于提供软件资源的池，包括用于虚拟桌面服务的操作系统（OS）; 以及用于支持硬件资源的虚拟机基础设施，以及将存储在软件资源中的软件动态分配给硬件资源。

公开(公告)号：US09288054B2

公开(公告)日：2016-03-15

申请号：US14222980

申请日：2014-03-24

Applicant: Electronics and Telecommunications Research Institute

Inventor： Jin-Hee Han ,  Bo-Heung Chung ,  Dae-Won Kim ,  Hwa-Shin Moon ,  Yong-Hyuk Moon ,  Jeong-Nyeo Kim

IPC: H04L9/08 ,  H04L9/38 ,  H04L9/32 ,  G06F21/00 ,  G06F21/44

CPC classification number: H04L9/3239 ,  G06F21/00 ,  G06F21/44

Abstract: Disclosed herein are authentication and management of an application using a mobile trusted module (MTM).According to an exemplary embodiment of the present invention, there is provided an apparatus for authenticating and managing an application, including: a mobile trusted module configured to store a hash value of an authentication data for at least one application and a secret key value of an authentication data which are installed in a mobile device, authenticate the application using the stored hash value and secret key value of the authentication data, and generate a storage root key (SRK) for the application; and a trusted software stack (TSS) middleware configured to generate a message requesting authentication for the application and generation of the storage root key (SRK) and transmit the generated message to the mobile trusted module and manage result information received from the mobile trusted module in response to the transmitted message.

Abstract translation: 这里公开了使用移动可信模块（MTM）的应用的认证和管理。 根据本发明的示例性实施例，提供了一种用于认证和管理应用的装置，包括：移动可信模块，被配置为存储用于至少一个应用的认证数据的散列值，以及存储 安装在移动设备中的认证数据，使用所存储的哈希值和认证数据的秘密密钥值对应用进行认证，并为应用生成存储根密钥（SRK）; 以及可信软件栈（TSS）中间件，被配置为生成请求对应用的认证的消息和生成存储根密钥（SRK），并将生成的消息发送到移动信任模块，并且管理从移动可信模块接收的结果信息 对发送的消息的响应。

公开(公告)号：US12107915B2

公开(公告)日：2024-10-01

申请号：US18333717

申请日：2023-06-13

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Dae-Won Kim ,  Sun-Wook Kim ,  Su-Min Jang ,  Jae-Geun Cha ,  Hyun-Hwa Choi

IPC: H04L67/10 ,  H04L41/0654

CPC classification number: H04L67/10 ,  H04L41/0654

Abstract: Disclosed herein are a distributed cloud system, a data processing method of a distributed cloud system, and a storage medium. The data processing method of a distributed cloud system includes receiving a request of a user for an edge cloud and controlling a distributed cloud system, wherein the distributed cloud system comprises a core cloud including a large-scale resource, the edge cloud, and a local cloud including a middle-scale resource between the core cloud and the edge cloud, processing tasks corresponding to the user request through a scheduler of the core cloud, distributing the tasks based on a queue, and aggregating results of processed tasks, and providing processed data in response to a request of the user, wherein the distributed cloud system provides a management function in case of failure in the distributed cloud system.

公开(公告)号：US12039035B2

公开(公告)日：2024-07-16

申请号：US17518373

申请日：2021-11-03

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Dong-Wook Kang ,  Dae-Won Kim ,  Ik-Kyun Kim ,  Sang-Su Lee ,  Jin-Yong Lee ,  Byeong-Cheol Choi ,  Yong-Je Choi

IPC: G06F21/54 ,  G06F9/30 ,  G06F21/55

CPC classification number: G06F21/54 ,  G06F9/30058 ,  G06F9/30101 ,  G06F21/554 ,  G06F21/556

Abstract: Disclosed herein are an apparatus and method for detecting violation of control flow integrity. The apparatus includes memory for storing a program and a processor for executing the program, wherein the processor multiple branch identifier registers to which identifiers of branch targets are written, a set branch identifier instruction configured to command an identifier of a branch target to be written to a branch identifier register at a predetermined sequence number, among the multiple branch identifier registers, and a check branch identifier instruction configured to command a signal indicating detection of a control flow hijacking attack to be issued based on whether a value written to the branch identifier register at the predetermined sequence number is identical to a value of an identifier of a branch target at the predetermined sequence number, wherein the program detects whether a control flow is hijacked based on the multiple branch identifier registers.

公开(公告)号：US11968312B2

公开(公告)日：2024-04-23

申请号：US17527861

申请日：2021-11-16

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Sang-Woo Lee ,  Dae-Won Kim ,  Jin-Yong Lee ,  Boo-Sun Jeon ,  Bo-Heung Chung ,  Hong-Il Ju ,  Joong-Yong Choi

IPC: H04L9/32 ,  H04L9/08

CPC classification number: H04L9/3247 ,  H04L9/0825 ,  H04L9/0866 ,  H04L9/3263

Abstract: Disclosed herein are an apparatus and method for processing vehicle data security based on a cloud. The method may include requesting, by a vehicle, a cloud center device to register a cloud-based vehicle data security service; generating, by the cloud center device, cloud-based vehicle data security policies and a pseudonym for the vehicle; requesting, by the cloud center device, an authentication center to generate a pseudonym certificate for the pseudonym and receiving the pseudonym certificate; transmitting, by the cloud center device, the cloud-based vehicle data security policies, the pseudonym, and the pseudonym certificate to the vehicle; generating, by the vehicle, vehicle state information, including accident record information and driving entity information, based on the cloud-based vehicle data security policies and transmitting the same to the cloud center device; and storing, by the cloud center device, the accident record information and the driving entity information in a database for each vehicle.

公开(公告)号：US11502870B2

公开(公告)日：2022-11-15

申请号：US17077702

申请日：2020-10-22

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Joong-Yong Choi ,  Dong-Wook Kang ,  Dae-Won Kim ,  Sang-Woo Lee ,  Jin-Yong Lee ,  Boo-Sun Jeon ,  Bo-Heung Chung ,  Hong-Il Ju ,  Byeong-Cheol Choi

IPC: H04L12/28 ,  H04L12/40 ,  H04L67/12

Abstract: Disclosed herein are a method for managing an access control list based on an automotive Ethernet and an apparatus for the same. The method includes analyzing a new access control rule that is input to a vehicle in which the automotive Ethernet is applied, searching for any one target unit to manage the new access control rule in consideration of at least one of a destination and an application target corresponding to the new access control rule, and storing the new access control rule by transmitting a storage request message corresponding to the new access control rule to the target unit.

公开(公告)号：US10379891B2

公开(公告)日：2019-08-13

申请号：US15092769

申请日：2016-04-07

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Soo-Cheol Oh ,  Dae-Won Kim ,  Sun-Wook Kim ,  Jong-Bae Moon ,  Myeong-Hoon Oh ,  Byeong-Thaek Oh ,  Jung-Hyun Cho ,  Seong-Woon Kim ,  Hag-Young Kim ,  Ji-Hyeok Choi

IPC: G06F9/451 ,  G06F9/455 ,  G06F9/445

Abstract: Disclosed herein are an apparatus and method for in-memory-based virtual desktop service. The apparatus for in-memory-based virtual desktop service includes a connection broker for performing a task for coordinating a delivery protocol that is used between at least one user terminal that uses virtual desktop service and multiple servers that provide the virtual desktop service, a resource pool for providing software resources including an Operating System (OS) for the virtual desktop service; and virtual machine infrastructure for supporting hardware resources, and dynamically allocating software stored in the software resources to the hardware resources.

公开(公告)号：US09235463B2

公开(公告)日：2016-01-12

申请号：US14028486

申请日：2013-09-16

Applicant: Electronics and Telecommunications Research Institute

Inventor： Yong-Hyuk Moon ,  Jeong-Nyeo Kim ,  Bo-Heung Chung ,  Jin-Hee Han ,  Dae-Won Kim ,  Hwa-Shin Moon

IPC: G06F11/07 ,  H04L12/24 ,  G06F11/34

CPC classification number: G06F11/079 ,  G06F11/0748 ,  G06F11/0793 ,  G06F11/3409 ,  G06F11/3452 ,  H04L41/0631 ,  H04L41/0883

Abstract: There is provided a method of fault management of a smart device including comparing a value of a fault detection indicator (hereinafter referred to as ‘FDI’) in a normal state, which detects faults generated in the smart device, with respect to at least one performance indicator, with an FDI value observed in real time and detecting the faults by calculating a relative variation level of the observed values, and creating a diagnosis object (hereinafter referred to as ‘DO’) including a cause and a countermeasure of the detected fault and analyzing the fault.

Abstract translation: 提供了一种智能设备的故障管理方法，包括将检测智能设备中产生的故障的正常状态下的故障检测指示符（以下称为“FDI”）的值相对于至少一个 性能指标，实时观察FDI值，并通过计算观测值的相对变化水平检测故障，并创建诊断对象（以下称为“DO”），其中包括检测到的故障的原因和对策 并分析故障。