利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

13 条记录 (耗时 0.016 秒)

    Cooperation method and system between send mechanism and IPSec protocol in IPV6 environment
    1.
    发明授权
    Cooperation method and system between send mechanism and IPSec protocol in IPV6 environment 有权
    IPV6环境下的发送机制与IPSec协议的协作方法和系统

    公开(公告)号:US08819790B2

    公开(公告)日:2014-08-26

    申请号:US12040355

    申请日:2008-02-29

    申请人: Young-Ik Eom Kwang-Sun Ko Hyun-Su Jang Hyun-jin Cho Yong-Woo Jung Hyun-Woo Choi Gye-Hyeon Gyeong Jung-Hwan Choi Zhen Zhao Tae-Hyoung Kim Youn-Woo Kim

    发明人: Young-Ik Eom Kwang-Sun Ko Hyun-Su Jang Hyun-jin Cho Yong-Woo Jung Hyun-Woo Choi Gye-Hyeon Gyeong Jung-Hwan Choi Zhen Zhao Tae-Hyoung Kim Youn-Woo Kim

    IPC分类号: H04L9/32 G06F21/00 H04L29/06

    CPC分类号: H04L63/164

    摘要: The present invention relates to a method of embodying a cooperation system between SEND and IPSec in an IPv6 environment. The cooperation system between SEND and IPSec in accordance with the present invention includes: receiving an authentication completion report message including a first IP address of a host whose authentication is completed by the SEND; generating new authentication information corresponding to the host and storing the new authentication information in a temporary storage area, if authentication information for the host is not present in the temporary storage area, wherein the authentication information includes the first IP address; and if an authentication check request message including a second IP address is received from the IPSec, checking whether the second IP address is present in the temporary storage area, and sending the result of checking to the IPSec. The present invention allows the authentication information shared between SEND and IPSec in a mobile environment, where the network is frequently accessed, enabling IPSec secure communication at a lower cost.

    摘要翻译: 本发明涉及在IPv6环境中体现SEND与IPSec之间的协作系统的方法。 根据本发明的SEND和IPSec之间的协作系统包括:接收认证完成报告消息,该消息包括通过SEND完成认证的主机的第一IP地址; 生成与所述主机对应的新认证信息,并将所述新认证信息存储在临时存储区域中,如果所述主机的认证信息不存在于所述临时存储区域中,则所述认证信息包括所述第一IP地址; 并且如果从IPSec接收到包含第二IP地址的认证检查请求消息,则检查该临时存储区域中是否存在第二IP地址,并向IPSec发送检查结果。 本发明允许在经常访问网络的移动环境中在SEND和IPSec之间共享的认证信息以更低的成本实现IPSec安全通信。

    Abnormal IPSec packet control system using IPSec configuration and session data, and method thereof
    3.
    发明授权
    Abnormal IPSec packet control system using IPSec configuration and session data, and method thereof 有权
    使用IPSec配置和会话数据的异常IPSec数据包控制系统及其方法

    公开(公告)号:US08336093B2

    公开(公告)日:2012-12-18

    申请号:US11707575

    申请日:2007-02-16

    申请人: Young Ik Eom Ka Eul Kim Kwangsun Ko Gyehyeon Gyeong Seong Goo Kang Yonghyeog Kang Hyunjin Cho Hyunsu Jang Yong Woo Jung Hyunwoo Choi

    发明人: Young Ik Eom Ka Eul Kim Kwangsun Ko Gyehyeon Gyeong Seong Goo Kang Yonghyeog Kang Hyunjin Cho Hyunsu Jang Yong Woo Jung Hyunwoo Choi

    IPC分类号: G06F9/00

    CPC分类号: H04L63/164

    摘要: An abnormal Internet Protocol Security (IPSec) packet control system and method utilizes IPSec configuration and session data to detect whether or not packets encrypted by an extended header are abnormal. The IPSec packet control system can include an extended header processing unit that receives an IPSec packet and extracts the data to be used in traffic control; check units for checking the packets in the stages of IPSec configuration and IPSec communication that receive the extracted data to determine whether or not the IPSec packet has passed; and a control unit that allows the IPSec to pass or to be blocked according to a determination result from the check units for checking the IPSec configuration and communication packets, where abnormal IPSec packets are blocked using the IPSec configuration and session tables without requiring them to be decrypted and encrypted.

    摘要翻译: 异常Internet协议安全(IPSec)数据包控制系统和方法利用IPSec配置和会话数据来检测扩展报头加密的数据包是否异常。 IPSec分组控制系统可以包括扩展头处理单元,其接收IPSec分组并提取要在业务控制中使用的数据; 检查接收提取数据的IPSec配置和IPSec通信阶段的报文检查单位,确定IPSec报文是否通过; 以及控制单元,其允许IPSec根据来自用于检查IPSec配置和通信分组的检查单元的确定结果通过或被阻止,其中使用IPSec配置和会话表阻止异常IPSec分组,而不需要它们 解密和加密。

    Methods for distributing log block associativity for real-time system and flash memory devices performing the same
    5.
    发明授权
    Methods for distributing log block associativity for real-time system and flash memory devices performing the same 有权
    用于分发执行相同功能的实时系统和闪存设备的日志块关联性的方法

    公开(公告)号:US08261010B2

    公开(公告)日:2012-09-04

    申请号:US12356306

    申请日:2009-01-20

    申请人: Young-Ik Eom Dong-Kun Shin Hyun-Jin Cho

    发明人: Young-Ik Eom Dong-Kun Shin Hyun-Jin Cho

    IPC分类号: G06F13/00 G06F13/28

    CPC分类号: G06F12/0246 G06F2212/7201 G06F2212/7202 G06F2212/7203

    摘要: A method for distributing log block associativity in log buffer-based flash translation layer (FTL) includes, if write request on page p is generated, checking whether log block associated with corresponding data block that write request is generated exists or not by checking log block mapping table storing mapping information between data blocks and log blocks, wherein the associativity of each log block to data block is set to equal to or less than predetermined value K in advance, and K is a natural number, if log block associated with corresponding data block that write request is generated exists, checking whether associated log block is random log block or sequential log block, and if associated log block is random log block, writing data that write request is generated in first free page of random log block.

    摘要翻译: 在基于日志缓冲的闪存转换层(FTL)中分配日志块关联性的方法包括:如果生成了第p页上的写请求,则通过检查日志块来检查是否存在与写入请求相关联的数据块相关联的日志块是否存在 映射表存储数据块和日志块之间的映射信息,其中每个日志块与数据块的相关性被预先设置为等于或小于预定值K,并且如果与对应数据相关联的日志块,则K是自然数 产生写请求的块,检查关联的日志块是随机日志块还是顺序日志块,如果关联的日志块是随机日志块,则写入请求的数据在随机日志块的第一个空闲页中生成。

    Abnormal IPSec packet control system using IPSec configuration and session data, and method thereof
    6.
    发明申请
    Abnormal IPSec packet control system using IPSec configuration and session data, and method thereof 有权
    使用IPSec配置和会话数据的异常IPSec数据包控制系统及其方法

    公开(公告)号:US20080168551A1

    公开(公告)日:2008-07-10

    申请号:US11707575

    申请日:2007-02-16

    申请人: Young Ik Eom Ka Eul Kim Kwangsun Ko Gyehyeon Gyeong Seoung Goo Kang Yonghyeog Kang Hyunjin Cho Hyunsu Jang Yong Woo Jung Hyunwoo Choi

    发明人: Young Ik Eom Ka Eul Kim Kwangsun Ko Gyehyeon Gyeong Seoung Goo Kang Yonghyeog Kang Hyunjin Cho Hyunsu Jang Yong Woo Jung Hyunwoo Choi

    IPC分类号: G06F15/16

    CPC分类号: H04L63/164

    摘要: Disclosed are an abnormal Internet Protocol Security (IPSec) packet control system and method using IPSec configuration and session data which detects whether or not the packets encrypted by an Encapsulating Security Payload extended header are abnormal by using IPSec configuration and session data tables without decrypting them, thereby blocking harmful packets. The IPSec packet control system comprises: an extended header processing unit that receives an IPSec packet and extracts the data to be used in traffic control; check units for checking the packets in the stages of IPSec configuration and IPSec communication that receive the extracted data to determine whether or not the IPSec packet has passed; and a control unit that allows the IPSec to pass or to be blocked according to a determination result from the check units for checking the IPSec configuration and communication packets, whereby the abnormal IPSec packets are blocked using the IPSec configuration and session tables without decryption and encryption thereof, thereby processing the IPSec packet without performance degradation.

    摘要翻译: 公开了使用IPSec配置和会话数据的异常互联网协议安全(IPSec)分组控制系统和方法,该方法通过使用IPSec配置和会话数据表来检测由封装安全有效载荷扩展报头加密的分组是否异常而不对其进行解密, 从而阻止有害数据包。 IPSec分组控制系统包括:扩展报头处理单元,接收IPSec报文并提取业务控制中要使用的数据; 检查接收提取数据的IPSec配置和IPSec通信阶段的报文检查单位,确定IPSec报文是否通过; 以及控制单元,其允许IPSec根据用于检查IPSec配置和通信分组的检查单元的确定结果通过或被阻塞,由此使用IPSec配置和会话表来阻止异常IPSec分组而不进行解密和加密 从而处理IPSec分组而不会降低性能。

    Menu user interface providing device and method thereof
    7.
    发明授权
    Menu user interface providing device and method thereof 有权
    菜单用户界面提供设备及其方法

    公开(公告)号:US08578294B2

    公开(公告)日:2013-11-05

    申请号:US12040405

    申请日:2008-02-29

    申请人: Young Ik Eom Kwang Sun Ko Hyunsu Jang Hyunjin Cho Yongwoo Jung Hyunwoo Choi Gyehyeon Gyeong Jung Hwan Choi Zhao Zhen Taehyoung Kim Younwoo Kim

    发明人: Young Ik Eom Kwang Sun Ko Hyunsu Jang Hyunjin Cho Yongwoo Jung Hyunwoo Choi Gyehyeon Gyeong Jung Hwan Choi Zhao Zhen Taehyoung Kim Younwoo Kim

    IPC分类号: G06F3/048

    CPC分类号: G06F3/04883 G06F3/0482 G06F2203/04807

    摘要: A menu user interface providing device and a method thereof are disclosed. In accordance with an embodiment of the present invention, the method of providing a menu user interface by a portable apparatus, including determining whether a main menu icon displayed on a touch screen is selected; determining whether a menu mode is an activation mode or an inactivation mode if the main menu icon is selected; and changing the menu mode into the activation mode if the menu mode is determined as the inactivation mode and forming an expanded menu by radically arranging a submenu of n hierarchies, n being a natural number, corresponding to the main menu icon and displaying the formed expanded menu through a touch screen. Accordingly, with the present invention, a user interface capable of inputting various data with easy manipulation and minimized multi-points can be provided.

    摘要翻译: 公开了一种菜单用户界面提供设备及其方法。 根据本发明的实施例,提供一种便携式设备提供菜单用户界面的方法,包括确定是否选择了在触摸屏上显示的主菜单图标; 如果选择了主菜单图标,则确定菜单模式是激活模式还是灭活模式; 以及如果所述菜单模式被确定为所述失活模式,则将所述菜单模式改变为所述激活模式,并且通过根据所述主菜单图标对应于n个等级的子菜单n,其为自然数,从而形成扩展菜单,并且显示所形成的展开 菜单通过触摸屏。 因此,利用本发明,可以提供能够输入容易操作和最小化多点的各种数据的用户接口。

    VIRTUALIZATION APPARATUS
    8.
    发明申请
    VIRTUALIZATION APPARATUS 审中-公开
    虚拟化设备

    公开(公告)号:US20110167422A1

    公开(公告)日:2011-07-07

    申请号:US12707808

    申请日:2010-02-18

    申请人: Young Ik Eom Jung Han Kim Byoung Hong Lim Tae Hyoung Kim In Hyeok Kim

    发明人: Young Ik Eom Jung Han Kim Byoung Hong Lim Tae Hyoung Kim In Hyeok Kim

    IPC分类号: G06F9/455

    CPC分类号: G06F9/45558 G06F2009/45583

    摘要: A virtualization apparatus includes one or more guest machines each comprised of a guest kernel and a guest user process, a hypervisor module installed in a host kernel and handling a request of the guest machine with regard to the virtualization apparatus, and a virtual processor supporting the guest machine to serve as a host user process and handling an interrupt and a switching of the guest machine, wherein address spaces of the guest kernel and the guest user process are designed to be separated from each other.

    摘要翻译: 虚拟化装置包括一个或多个客体机器,每个客机机器包括客机内核和来宾用户进程,安装在主机内核中的管理程序模块,以及处理客机机器关于虚拟化设备的请求;以及虚拟处理器, 访客机器用作主机用户进程并处理客户机的中断和切换,其中客体内核和客户进程的地址空间被设计为彼此分离。

    CONTEXT-AWARE ROLE-BASED ACCESS CONTROL SYSTEM AND CONTROL METHOD THEREOF
    9.
    发明申请
    CONTEXT-AWARE ROLE-BASED ACCESS CONTROL SYSTEM AND CONTROL METHOD THEREOF 有权
    背景技术基于角色的访问控制系统及其控制方法

    公开(公告)号:US20100100941A1

    公开(公告)日:2010-04-22

    申请号:US12371670

    申请日:2009-02-16

    申请人: Young-Ik Eom Jung-Hwan Choi Hyun-Su Jang Youn-Woo Kim Dong-Hyun Kang Chang-Hwan Song

    发明人: Young-Ik Eom Jung-Hwan Choi Hyun-Su Jang Youn-Woo Kim Dong-Hyun Kang Chang-Hwan Song

    IPC分类号: H04L9/32

    CPC分类号: G06F21/6218 G06F2221/2111 G06F2221/2137

    摘要: A context-aware role-based access control system and a control method thereof. The context-aware role-based access control system includes: a context-aware user assignment manager (CAUAM) for performing a role assignment function, a role delegation function, or a role revocation function for a user according to a context of the user, based on a preset context request condition; a context-aware permission assignment manager (CAPAM) for performing a permission modification, a permission restoration, and a personalized permission modification for a permission, which the role has, according to changes in the context of the user; an information repository for storing a user profile and context information; and an access control manager (ACM) for controlling the context-aware user assignment manager, the context-aware permission assignment manager, and the information repository, and processing an access control request. Accordingly, more efficient access control can be achieved in ubiquitous environments where the context of the user dynamically changes.

    摘要翻译: 一种基于上下文感知角色的访问控制系统及其控制方法。 基于上下文感知角色的访问控制系统包括:用于根据用户的上下文执行角色分配功能的上下文感知用户分配管理器(CAUAM),角色委派功能或角色撤销功能, 基于预设的上下文请求条件; 根据用户上下文的变化,执行权限修改,许可恢复和角色具有的许可的个性化权限修改的上下文感知许可分配管理器(CAPAM); 用于存储用户简档和上下文信息的信息存储库; 以及用于控制上下文感知用户分配管理器,上下文感知许可分配管理器和信息存储库以及处理访问控制请求的访问控制管理器(ACM)。 因此,可以在无处不在的环境中实现更有效的访问控制,其中用户的上下文动态地改变。

    COOPERATION METHOD AND SYSTEM BETWEEN SEND MECHANISM AND IPSEC PROTOCOL IN IPV6 ENVIRONMENT
    10.
    发明申请
    COOPERATION METHOD AND SYSTEM BETWEEN SEND MECHANISM AND IPSEC PROTOCOL IN IPV6 ENVIRONMENT 有权
    IPV6环境中发送机制与IPSEC协议之间的合作方法与系统

    公开(公告)号:US20090077642A1

    公开(公告)日:2009-03-19

    申请号:US12040355

    申请日:2008-02-29

    申请人: Young-Ik EOM Kwang-Sun Ko Hyun-Su Jang Hyun-jin Cho Yong-Woo Jung Hyun-Woo Choi Gye-Hyeon Gyeong Jung-Hwan Choi Zhen Zhao Tae-Hyoung Kim Youn-Woo Kim

    发明人: Young-Ik EOM Kwang-Sun Ko Hyun-Su Jang Hyun-jin Cho Yong-Woo Jung Hyun-Woo Choi Gye-Hyeon Gyeong Jung-Hwan Choi Zhen Zhao Tae-Hyoung Kim Youn-Woo Kim

    IPC分类号: H04L9/32 G06F21/00

    CPC分类号: H04L63/164

    摘要: The present invention relates to a method of embodying a cooperation system between SEND and IPSec in an IPv6 environment. The cooperation system between SEND and IPSec in accordance with the present invention includes: receiving an authentication completion report message including a first IP address of a host whose authentication is completed by the SEND; generating new authentication information corresponding to the host and storing the new authentication information in a temporary storage area, if authentication information for the host is not present in the temporary storage area, wherein the authentication information includes the first IP address; and if an authentication check request message including a second IP address is received from the IPSec, checking whether the second IP address is present in the temporary storage area, and sending the result of checking to the IPSec. The present invention allows the authentication information shared between SEND and IPSec in a mobile environment, where the network is frequently accessed, enabling IPSec secure communication at a lower cost.

    摘要翻译: 本发明涉及在IPv6环境中体现SEND与IPSec之间的协作系统的方法。 根据本发明的SEND和IPSec之间的协作系统包括:接收认证完成报告消息,该消息包括通过SEND完成认证的主机的第一IP地址; 生成与所述主机对应的新认证信息,并将所述新认证信息存储在临时存储区域中,如果所述主机的认证信息不存在于所述临时存储区域中,则所述认证信息包括所述第一IP地址; 并且如果从IPSec接收到包含第二IP地址的认证检查请求消息,则检查该临时存储区域中是否存在第二IP地址,并向IPSec发送检查结果。 本发明允许在经常访问网络的移动环境中在SEND和IPSec之间共享的认证信息以更低的成本实现IPSec安全通信。