利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

15 条记录 (耗时 0.043 秒)

    Network status display device and method using traffic pattern map
    1.
    发明授权
    Network status display device and method using traffic pattern map 有权
    网络状态显示设备和使用流量模式图的方法

    公开(公告)号:US07849187B2

    公开(公告)日:2010-12-07

    申请号:US11527850

    申请日:2006-09-26

    申请人: Beom Hwan Chang Jung Chan Na Geon Lyang Kim Dong Young Kim Jin Oh Kim Hyun Joo Kim Hyo Chan Bang Soo Hyung Lee Seon Gyoung Shon Jong Soo Jang Sung Won Sohn

    发明人: Beom Hwan Chang Jung Chan Na Geon Lyang Kim Dong Young Kim Jin Oh Kim Hyun Joo Kim Hyo Chan Bang Soo Hyung Lee Seon Gyoung Shon Jong Soo Jang Sung Won Sohn

    IPC分类号: G06F15/16

    CPC分类号: H04L43/028 H04L43/062 H04L43/16 H04L63/1408

    摘要: A network status display device using a traffic pattern map is provided. The device includes: a traffic feature extractor extracting a port number of a port having the maximum occupancy of micro-flows and macro-flows for each network address section and host address section with reference to traffic information collected by an external traffic information collector, calculating and storing an occupancy rate of the port; a traffic status display unit making a network traffic pattern map expressed by destination-source network addresses and a host traffic pattern map expressed by destination-source host addresses and displaying the port information stored in the traffic feature extractor on the network traffic pattern map and the host traffic pattern map; and a traffic anomaly determination unit determining whether a network status is abnormal with reference to the network traffic pattern map and the host traffic pattern map and detecting and reporting a harmful or abnormal traffic which causes the abnormal network status. The device can determine whether the anomaly deteriorating the network performance exists and can easily and quickly detect the harmful or abnormal traffic which causes the anomaly by the use of the port information of the port having the maximum occupancy of the micro-flows and the macro-flows for each network address section and each host address section.

    摘要翻译: 提供了使用业务模式图的网络状态显示设备。 该设备包括:流量特征提取器,参考由外部交通信息收集器收集的交通信息,提取每个网络地址部分和主机地址部分具有最大占用微流量和宏流量的端口的端口号,计算 并存储所述端口的占用率; 形成由目的地源网络地址表示的网络流量模式图的流量状态显示单元和由目的地 - 源主机地址表示的主机流量模式图,并且在网络流量模式图上显示存储在流量特征提取器中的端口信息,并且 主机流量模式图; 以及流量异常判定单元,基于网络流量模式图和主机流量模式图来判断网络状态是否异常,并检测并报告导致异常网络状态的有害或异常流量。 该设备可以确定异常是否存在网络性能恶化,并可以通过使用具有微流量最大占用端口的端口信息和宏观流量来轻松快速地检测导致异常的有害或异常流量, 每个网络地址部分和每个主机地址部分的流程。

    Network status display device and method using traffic flow-radar
    2.
    发明授权
    Network status display device and method using traffic flow-radar 有权
    网络状态显示装置及方法采用交通流雷达

    公开(公告)号:US07787394B2

    公开(公告)日:2010-08-31

    申请号:US11599909

    申请日:2006-11-15

    申请人: Beom Hwan Chang Jung Chan Na Geon Lyang Kim Dong Young Kim Jin Oh Kim Hyun Joo Kim Hyo Chan Bang Soo Hyung Lee Seon Gyoung Sohn Jong Soo Jang Sung Won Sohn

    发明人: Beom Hwan Chang Jung Chan Na Geon Lyang Kim Dong Young Kim Jin Oh Kim Hyun Joo Kim Hyo Chan Bang Soo Hyung Lee Seon Gyoung Sohn Jong Soo Jang Sung Won Sohn

    IPC分类号: H04L12/66 G01R31/08 H04W36/00

    CPC分类号: H04L43/045 H04L43/0817 H04L43/16

    摘要: A network status display device using a traffic flow-radar is provided. The network status display device includes: a traffic feature extractor calculating flow occupancy rates for total flows, micro-flows and macro-flows with respect to each of a plurality of traffic features with reference to traffic information for each traffic feature such as a network address, a port, a transmitting/receiving host address or a protocol collected by an external traffic information collector, and storing the calculation result; a traffic status display unit displaying the flow occupancy rates for each traffic feature calculated and stored in the traffic feature extractor on a radar with dots for each traffic feature; and a traffic anomaly determination unit determining whether a network status is abnormal with reference to the radar for each traffic feature, detecting and reporting the type of the abnormal network status and harmful or abnormal traffic that generates the abnormal network status, when the abnormal status occurs.

    摘要翻译: 提供了使用交通流量雷达的网络状态显示装置。 网络状态显示装置包括:业务特征提取器,参考每个业务特征(例如网络地址)的业务信息来计算关于多个业务特征中的每一个的总流量,微流量和宏流量的流量占用率 ,端口,发送/接收主机地址或由外部交通信息收集器收集的协议,并存储计算结果; 交通状态显示单元,其显示针对每个交通特征点的雷达上计算并存储在交通特征提取器中的每个交通特征的流量占用率; 以及交通异常判定单元,针对每个流量特征,参照雷达确定网络状态是否异常,检测和报告异常网络状态的类型以及产生异常网络状态的有害或异常流量,当发生异常状态时 。

    APPARATUS AND METHOD FOR DISPLAYING STATE OF NETWORK
    5.
    发明申请
    APPARATUS AND METHOD FOR DISPLAYING STATE OF NETWORK 审中-公开
    用于显示网络状态的装置和方法

    公开(公告)号:US20100150008A1

    公开(公告)日:2010-06-17

    申请号:US12530193

    申请日:2008-03-07

    申请人: Seon Gyoung Sohn Chi Yoon Jeong Beom Hwan Chang Soo Hyung Lee Hyo Chan Bang Geon Lyang Kim Hyun Joo Kim Won Joo Park Jong Ho Ryu Jong Hyun Kim Jung Chan Na Jong Soo Jang Sung Won Sohn

    发明人: Seon Gyoung Sohn Chi Yoon Jeong Beom Hwan Chang Soo Hyung Lee Hyo Chan Bang Geon Lyang Kim Hyun Joo Kim Won Joo Park Jong Ho Ryu Jong Hyun Kim Jung Chan Na Jong Soo Jang Sung Won Sohn

    IPC分类号: H04L12/26

    CPC分类号: H04L41/22 H04L43/045 H04L63/1408

    摘要: There are provided a network state display apparatus and method capable of easily determining a present network security state in real time by analyzing an abnormality and harmful traffic deteriorating performance of a network in software by using a result of combining essential characteristics of traffic, a distinct dispersion, and an entropy and displaying the network state to be intuitionally recognized, the method including selecting and combining three of a source address, a source port, a destination address, and a destination port of collected traffic and calculating a distinct dispersion and an entropy of a residual one therefrom; displaying the calculated distinct dispersion and entropy on a security radar where the distinct dispersion and the entropy are assigned to an angle and a radius; determining whether a network state is abnormal, based on a result displayed on the security radar; and detecting reporting detailed information on abnormal traffic causing the abnormal network state.

    摘要翻译: 提供了一种网络状态显示装置和方法,其能够通过使用组合业务的基本特征的结果分析软件中的网络的异常和有害的业务恶化的性能来实时地容易地确定当前的网络安全状态,不同的分散 以及熵并显示要直观识别的网络状态,所述方法包括选择和组合收集的业务的源地址,源端口,目的地地址和目的地端口中的三个,并计算不同的色散和熵 剩余的一个; 在安全雷达上显示计算出的不同色散和熵,其中明确的色散和熵分配给角度和半径; 基于安全雷达上显示的结果,确定网络状态是否异常; 检测异常网络状态异常报告的详细信息。

    Apparatus and method of detecting network attack situation
    6.
    发明授权
    Apparatus and method of detecting network attack situation 有权
    检测网络攻击情况的方法及装置

    公开(公告)号:US07596810B2

    公开(公告)日:2009-09-29

    申请号:US11081682

    申请日:2005-03-17

    申请人: Jin Oh Kim Seon Gyoung Sohn Hyochan Bang Soo Hyung Lee Dongyoung Kim Beom Hwan Chang Geon Lyang Kim Hyun Joo Kim Jung Chan Na Jong Soo Jang Sung Won Sohn

    发明人: Jin Oh Kim Seon Gyoung Sohn Hyochan Bang Soo Hyung Lee Dongyoung Kim Beom Hwan Chang Geon Lyang Kim Hyun Joo Kim Jung Chan Na Jong Soo Jang Sung Won Sohn

    IPC分类号: G08B23/00 G06F15/173

    CPC分类号: H04L63/1416 G06F21/552 G06F21/85 H04L63/1441

    摘要: Provided is an apparatus for detecting a network attack situation. The apparatus includes an alarm receiver receiving a plurality of alarms raised in a network to which the alarm receiver is connected, converting the alarms into predetermined alarm data, and outputting the alarm data; an alarm processor analyzing an attack situation in the network based on attributes of the alarm data and a number of times that the alarm data is generated; a memory storing basic data needed to analyze the state of the network and providing the basic data to the alarm processor; and an interface transmitting the result of the analysis by the alarm processor to an external device, receiving a predetermined critical value from the external device, which is a basis for determining the occurrence of the attack situation, and outputting the critical value to the alarm processor such that the alarm processor can store the critical value in the memory. Equal numbers of hash engines and detection engines for processing the alarms in the network to the number of data groups classified as network attack situations are formed in a line. Therefore, a network attack situation can be detected in real time based on a great number of alarms indicating intrusion detection.

    摘要翻译: 提供了一种用于检测网络攻击情况的装置。 该装置包括接收在连接有报警接收器的网络中升起的多个报警的报警接收机,将报警转换成预定报警数据,并输出报警数据; 报警处理器根据报警数据的属性和产生报警数据的次数分析网络中的攻击情况; 存储器,用于存储分析网络状态并将基本数据提供给报警处理器所需的基本数据; 以及将所述报警处理器的分析结果发送到外部设备的接口,从外部设备接收预定的临界值,所述临时值是用于确定所述攻击情况的发生的基础,并且将所述临界值输出到所述报警处理器 使得报警处理器可以将临界值存储在存储器中。 在网络中形成等同数量的散列引擎和检测引擎,用于将网络中的警报处理为分类为网络攻击情况的数据组的数量。 因此,可以基于大量表示入侵检测的告警来实时检测网络攻击情况。

    APPARATUS AND METHOD OF DETECTING NETWORK ATTACK SITUATION
    7.
    发明申请
    APPARATUS AND METHOD OF DETECTING NETWORK ATTACK SITUATION 审中-公开
    检测网络攻击状况的装置和方法

    公开(公告)号:US20090094699A1

    公开(公告)日:2009-04-09

    申请号:US12275906

    申请日:2008-11-21

    申请人: Jin Oh KIM Seon Gyoung Sohn Hyochan Bang Soo Hyung Lee Dongyoung Kim Beom Hwan Chang Geon Lyang Kim Hyun Joo Kim Jung Chan Na Jong Soo Jang Sung Won Sohn

    发明人: Jin Oh KIM Seon Gyoung Sohn Hyochan Bang Soo Hyung Lee Dongyoung Kim Beom Hwan Chang Geon Lyang Kim Hyun Joo Kim Jung Chan Na Jong Soo Jang Sung Won Sohn

    IPC分类号: G06F15/18 G08B23/00

    CPC分类号: H04L63/1416 G06F21/552 G06F21/85 H04L63/1441

    摘要: Provided is an apparatus for detecting a network attack situation. The apparatus includes an alarm receiver receiving a plurality of alarms raised in a network to which the alarm receiver is connected, converting the alarms into predetermined alarm data, and outputting the alarm data; an alarm processor analyzing an attack situation in the network based on attributes of the alarm data and a number of times that the alarm data is generated; a memory storing basic data needed to analyze the state of the network and providing the basic data to the alarm processor; and an interface transmitting the result of the analysis by the alarm processor to an external device, receiving a predetermined critical value from the external device, which is a basis for determining the occurrence of the attack situation, and outputting the critical value to the alarm processor such that the alarm processor can store the critical value in the memory. Equal numbers of hash engines and detection engines for processing the alarms in the network to the number of data groups classified as network attack situations are formed in a line. Therefore, a network attack situation can be detected in real time based on a great number of alarms indicating intrusion detection.

    摘要翻译: 提供了一种用于检测网络攻击情况的装置。 该装置包括接收在连接有报警接收器的网络中升起的多个报警的报警接收机,将报警转换成预定报警数据,并输出报警数据; 报警处理器根据报警数据的属性和产生报警数据的次数分析网络中的攻击情况; 存储器,用于存储分析网络状态并将基本数据提供给报警处理器所需的基本数据; 以及将所述报警处理器的分析结果发送到外部设备的接口,从外部设备接收预定的临界值,所述临时值是用于确定所述攻击情况的发生的基础,并且将所述临界值输出到所述报警处理器 使得报警处理器可以将临界值存储在存储器中。 在网络中形成等同数量的散列引擎和检测引擎,用于将网络中的警报处理为分类为网络攻击情况的数据组的数量。 因此,可以基于大量表示入侵检测的告警来实时检测网络攻击情况。

    Apparatus and method for detecting and visualizing anomalies in network traffic
    8.
    发明授权
    Apparatus and method for detecting and visualizing anomalies in network traffic 有权
    用于检测和可视化网络流量异常的装置和方法

    公开(公告)号:US07539147B2

    公开(公告)日:2009-05-26

    申请号:US11077638

    申请日:2005-03-11

    申请人: Beom Hwan Chang Soo Hyung Lee Jin Oh Kim Jung Chan Na Jong Soo Jang Sung Won Sohn

    发明人: Beom Hwan Chang Soo Hyung Lee Jin Oh Kim Jung Chan Na Jong Soo Jang Sung Won Sohn

    IPC分类号: G01R31/08

    CPC分类号: H04L41/22 H04L41/06 H04L43/0817

    摘要: Provided is an apparatus for detecting and visualizing anomalies in network traffic which includes a traffic information storing portion storing information on network traffic, a traffic state display portion presenting a status of the network traffic generated for a predetermined threshold time based on the information on network traffic on an orthogonal coordinates system in a form of a graph connecting at least one point data as a coordinate value, and a traffic anomalies determination portion determining an existence of anomalies in the network traffic based on a shape of the graph.

    摘要翻译: 提供了一种用于检测和可视化网络流量异常的装置,其包括存储关于网络流量的信息的交通信息存储部分,基于关于网络流量的信息呈现针对预定阈值时间生成的网络流量的状态的交通状态显示部分 以连接至少一个点数据作为坐标值的图形的正交坐标系,以及基于图形的形状来确定网络业务中的异常的存在的业务异常确定部分。

    Electronic voting method and apparatus
    9.
    发明授权
    Electronic voting method and apparatus 有权
    电子投票方法和设备

    公开(公告)号:US08353453B2

    公开(公告)日:2013-01-15

    申请号:US13003321

    申请日:2010-05-07

    申请人: Soo Hyung Lee

    发明人: Soo Hyung Lee

    IPC分类号: G06F17/00

    CPC分类号: G06Q10/00 G06Q50/26 G07C13/00

    摘要: The present disclosure relates to a method and apparatus for electronic voting performed in response to insertion of an electronic ballot by a voter into an electronic voting machine. The method includes storing candidate information in a candidate database, issuing an electronic ballot by a ballot dispenser in response to a ballot issuance request of a voter, displaying by the electronic voting machine a list of candidates from the candidate database when the electronic ballot is inserted into the electronic voting machine, and printing by a printer vote data related to a selected candidate on the electronic ballot, followed by dispensing the printed electronic ballot when the voter selects the candidate whom the voter wishes to vote from among the list of candidates. The electronic ballot is printed with a barcode corresponding to vote information containing at least one of data for authentication, precinct ID and polling place ID.

    摘要翻译: 本公开涉及一种用于电子投票的方法和装置,其响应于由选民插入电子投票机进入电子投票机。 该方法包括将候选信息存储在候选数据库中,以响应投票人的投票发出请求,通过投票人分发器进行电子投票,当电子投票插入时由电子投票机显示来自候选数据库的候选人名单 进入电子投票机,用打印机打印与电子投票中的选定候选人有关的数据,随后在投票人从候选人名单中选出投票人希望投票的候选人时,分发印刷电子投票。 打印电子投票的条形码对应于包含用于认证的数据,区域ID和投票地点ID中的至少一个的投票信息。

    METHOD, DEVICE AND SYSTEM FOR REAL-TIME PUBLISH SUBSCRIBE DISCOVERY BASED ON DISTRIBUTED HASH TABLE
    10.
    发明申请
    METHOD, DEVICE AND SYSTEM FOR REAL-TIME PUBLISH SUBSCRIBE DISCOVERY BASED ON DISTRIBUTED HASH TABLE 审中-公开
    基于分布式HASH表的实时发布订阅发现的方法,设备和系统

    公开(公告)号:US20120166556A1

    公开(公告)日:2012-06-28

    申请号:US13292775

    申请日:2011-11-09

    申请人: Jae Hyuk KIM Soo Hyung Lee Hyung Kook Jun Kyeong Tae Kim Yong Yeon Kim Won Tae Kim Seung Min Park

    发明人: Jae Hyuk KIM Soo Hyung Lee Hyung Kook Jun Kyeong Tae Kim Yong Yeon Kim Won Tae Kim Seung Min Park

    IPC分类号: G06F15/16

    CPC分类号: H04L67/1065

    摘要: A method, a device, and a system for real-time publish subscribe (RTPS) discovery based on a distributed hash table (DHT) are provided. The method for RTPS discovery based on a DHT includes: registering, by a participant peer of participants, the participants in a distributed hash table (DHT) of an overlay network; obtaining location information on relative participants to be discovered from the DHT; sharing information on entities of the relative participants by exchanging a discovery message with the participant peer based on the location information on the obtained relative participants; and performing handshaking between the entities of the participants and the entities of the relative participants. Therefore, the exemplary embodiments of the present invention can rapidly and efficiently perform the discover of the participants based on the DHT.

    摘要翻译: 提供了一种基于分布式哈希表(DHT)的方法,设备和用于实时发布订阅(RTPS)发现的系统。 基于DHT的用于RTPS发现的方法包括:由参与者的参与者对等体登记覆盖网络的分布式哈希表(DHT)中的参与者; 从DHT获取要发现的相关参与者的位置信息; 基于所获得的相关参与者的位置信息,通过与参与者对等体交换发现消息来共享相关参与者的实体的信息; 并在参与者的实体和相关参与者的实体之间执行握手。 因此,本发明的示例性实施例可以基于DHT快速有效地执行参与者的发现。