-
公开(公告)号:US20200296119A1
公开(公告)日:2020-09-17
申请号:US16813986
申请日:2020-03-10
Inventor: Jae Deok LIM , Kyeong Tae KIM , Jeong Nyeo KIM , Seon Gyoung SOHN , Yun Kyung LEE
IPC: H04L29/06
Abstract: Provided is an apparatus and method for security control that is capable of preventing a security threat from spreading on the basis of a security control policy established for each device (or a device group) in a network infrastructure environment, such as IoT. In a network infrastructure including a service server, a gateway, and a device, the apparatus and method for security control, in response to detecting a security threat, such as distributed denial of service (DDoS) attacks, malicious code propagation, or the like, perform a security control and a security control release on a device in which the security threat has occurred and/or a device group having an identical or similar property to the device to prevent the security threat from spreading and block the security threat in an early stage.
-
2.发明申请SYSTEM AND METHOD FOR CONTROLLING ACCESS TO SECURITY ENGINE OF MOBILE TERMINAL 审中-公开控制移动终端安全引擎的系统和方法公开(公告)号:US20150106871A1
公开(公告)日:2015-04-16
申请号:US14331474
申请日:2014-07-15
Inventor: Jae Deok LIM
Abstract: Provided is a system for controlling access to a security engine of a mobile terminal including a basic operating system and a security engine in which an app ID and user authentication information are transmitted to the security engine in order to execute a reliable app installed in the basic operating system and use a security function of the security engine, and the security engine performs authentication of whether an app is the reliable app or whether a user executing the reliable app is an owner of the mobile terminal based on the app ID transmitted from the basic operating system and the user authentication information and then permits access to the security engine.
Abstract translation: 提供了一种用于控制对包括基本操作系统和安全引擎的移动终端的安全引擎的访问的系统,其中将应用ID和用户认证信息发送到安全引擎,以执行安装在基本操作系统中的可靠应用 操作系统并使用安全引擎的安全功能,并且安全引擎基于从基本信息发送的应用ID来执行应用是可靠应用的认证还是执行可靠应用的用户是移动终端的所有者 操作系统和用户认证信息,然后允许访问安全引擎。
-
公开(公告)号:US20140150084A1
公开(公告)日:2014-05-29
申请号:US14079096
申请日:2013-11-13
Inventor: Yun-Kyung LEE , Jae Deok LIM , Young Ho KIM , Jeong Nyeo KIM
IPC: G06F21/31
Abstract: A user authentication apparatus safely uses resources by forming a communication channel between a plurality of execution environments through user authentication in a portable terminal providing the plurality of execution environments based on a virtualization solution, and prevents private information from being illegally leaked by hacking by not directly exposing a PIN number or a password a user inputs using a virtual keyboard and a keyboard coordinate when authenticating the user.
Abstract translation: 用户认证装置通过在基于虚拟化解决方案提供多个执行环境的便携式终端中通过用户认证在多个执行环境之间形成通信信道来安全地使用资源,并且防止私人信息被非直接的黑客非法泄露 在验证用户时,使用虚拟键盘和键盘坐标显示用户输入的PIN号码或密码。
-
4.发明申请METHOD AND APPARATUS FOR PROVIDING CONCEALED SOFTWARE EXECUTION ENVIRONMENT BASED ON VIRTUALIZATION 审中-公开基于虚拟化提供隐蔽软件执行环境的方法和装置公开(公告)号:US20140033266A1
公开(公告)日:2014-01-30
申请号:US13947241
申请日:2013-07-22
Inventor: Young Ho KIM , Jeong Nyeo KIM , Jae Deok LIM , Yun-Kyung LEE
IPC: G06F21/00
CPC classification number: G06F21/00 , G06F9/45558 , G06F21/53 , G06F2009/45587 , G06F2221/2149 , H04W12/0806 , H04W88/02
Abstract: A method and apparatus provides a concealed software execution environment based on virtualization. The method and apparatus constructs a concealed domain that is exclusively executed without being exposed to the outside using a virtualization-based domain separating technology and executes security information such as key information provided by a secure element within the concealed domain.
Abstract translation: 一种方法和装置提供了基于虚拟化的隐藏的软件执行环境。 该方法和装置构建了一个被隐藏的域,其被独占地执行,而不会使用基于虚拟化的域分离技术暴露于外部,并且执行诸如由隐藏域内的安全元件提供的密钥信息等安全信息。
-
公开(公告)号:US20130218891A1
公开(公告)日:2013-08-22
申请号:US13766743
申请日:2013-02-13
Inventor: Jae Deok LIM , Byeong Cheol CHOI , Seung Wan HAN
IPC: G06F17/30
CPC classification number: G06F16/20 , G06F21/6218 , G06F2221/2143 , G06F2221/2149 , H04L63/0245 , H04L63/1425
Abstract: The present invention provides a method of remotely controlling harmful contents including: storing connection information of a managed-terminal and connection information of a managing-terminal in a database unit by using an administrative server, by transmitting the connection information to the administrative server by using the managed-terminal; analyzing, by the managed-terminal, contents stored in the managed-terminal and creating an analysis result on the contents; requesting, by the managed-terminal, the connection information of the managing-terminal to the administrative server; transmitting, by the managed-terminal, the analysis result on the contents to the managing-terminal by using the connection information of the managing-terminal transmitted from the managing server; and processing, by the managed-terminal, the contents in accordance with a processing request for the contents transmitted from the managing-terminal.
Abstract translation: 本发明提供了一种远程控制有害内容的方法,包括:通过使用管理服务器,将管理终端的连接信息和管理终端的连接信息存储在数据库单元中,通过使用向管理服务器发送连接信息 管理终端; 由被管理终端分析存储在被管理终端中的内容,并对内容创建分析结果; 由管理终端向管理服务器请求管理终端的连接信息; 由管理终端通过使用从管理服务器发送的管理终端的连接信息将内容的分析结果发送到管理终端; 以及由管理终端根据对从管理终端发送的内容的处理请求处理内容。
-
Patent Agency Ranking
6.发明公开公开(公告)号:US20230292129A1
公开(公告)日:2023-09-14
申请号:US18118202
申请日:2023-03-07
Inventor: Kyeong Tae KIM , Young Ho KIM , Jeong Nyeo KIM , Seon Gyoung SOHN , Yun Kyung LEE , Jae Deok LIM
IPC: H04W12/108 , H04L9/32 , H04L9/30
CPC classification number: H04W12/108 , H04L9/3213 , H04L9/3073 , H04L9/3247
Abstract: Provided are an apparatus and method for performing remote attestation by taking into account mobility. The method includes obtaining, by each node constituting a network, a remote attestation result value by performing self-remote attestation, obtaining, by each of the nodes, remote attestation result values from the other nodes by broadcasting the obtained remote attestation result value to at least one neighboring node, and monitoring, by each of the nodes, remote attestation of each of the nodes on the basis of the obtained remote attestation result values of the nodes.
-
公开(公告)号:US20200273586A1
公开(公告)日:2020-08-27
申请号:US16798730
申请日:2020-02-24
Inventor: Yun Kyung LEE , Kyeong Tae KIM , Jeong Nyeo KIM , Seon Gyoung SOHN , Jae Deok LIM
IPC: G16Y30/10 , G16Y40/50 , H04L9/08 , H04N21/2347
Abstract: A method for security of an Internet of things (IoT) device includes transmitting, by a server, a key value determined based on a reliability level of a user device and a key identification (ID) of the key value to the user device, encrypting, by the user device, a command representing a service requested by a user by using the key value and transmitting the encrypted command and the key ID to the IoT device, and extracting, by the IoT device, the key value corresponding to the key ID received from the user device from pre-stored key list information, decrypting the encrypted command by using the extracted key value, executing the decrypted command to generate information requested by the user, encrypting the generated information by using the extracted key value, and transmitting the encrypted information to the user device.
-
8.发明申请公开(公告)号:US20190163910A1
公开(公告)日:2019-05-30
申请号:US16204802
申请日:2018-11-29
Inventor: Yong Hyuk MOON , Dae Won KIM , Young Sae KIM , Seung Yong YOON , Jin Hee HAN , Jeong Nyeo KIM , Jae Deok LIM
Abstract: A method and an apparatus for device security verification utilizing a virtual trusted computing base are provided. The validity of a key for decryption is verified by a secure memory loader running on a processor of a device after booting of the device which is a computing device, and if the key is valid, encrypted firmware stored in a memory of the device is decrypted using the key to verify the confidentiality of the firmware. Then, the security memory loader verifies the authentication and integrity of the firmware by comparing a signature value generated for the decrypted firmware with an existing signature value.
-
9.发明申请公开(公告)号:US20170317889A1
公开(公告)日:2017-11-02
申请号:US15226294
申请日:2016-08-02
Inventor: Yong Hyuk MOON , Dae Won KIM , Young Sae KIM , Seung Yong YOON , Jin Hee HAN , Jae Deok LIM , Jeong Nyeo KIM , Yong Sung JEON
Abstract: A system for performing an integrity verification based on a distributed delegator and verifying an integrity of a plurality of individual devices based on a network includes: a first individual device which is an integrity verification target of the plurality of individual devices; a second individual device configured to vicariously verify the verification target device of the plurality of individual devices; and a remote device management server configured to select the second individual device of the plurality of individual devices as a verification delegator, and to receive a result of integrity verification of the first individual device by the second individual device.
-
公开(公告)号:US20150271679A1
公开(公告)日:2015-09-24
申请号:US14663110
申请日:2015-03-19
Inventor: Su Wan PARK , Geon Lyang KIM , Kyung Soo LIM , Jae Deok LIM , Jeong Nyeo KIM
CPC classification number: H04W12/10 , G06F21/10 , G06F21/64 , H04L63/123 , H04W4/50 , H04W4/60 , H04W12/12
Abstract: A system and method of verifying integrity of software for verifying the integrity of software installed on a mobile terminal is provided. The system includes the mobile terminal configured to transmit mobile terminal information including a first software hash value and a software identification (ID) with respect to the software, and an office trust software monitor server configured to transmit the software ID transmitted from the mobile terminal to a software publishing server, receive a second software hash value with respect to the software corresponding to the software ID from the software publishing server, compare the first software hash value and the second software hash value, and verify the integrity of the software.
Abstract translation: 提供了一种验证用于验证安装在移动终端上的软件的完整性的软件的完整性的系统和方法。 该系统包括被配置为发送包括第一软件散列值和关于软件的软件标识(ID)的移动终端信息的移动终端,以及办公室信任软件监视服务器,被配置为将从移动终端发送的软件ID发送到 软件发布服务器,从软件发布服务器接收与软件ID相对应的软件的第二软件散列值,比较第一软件散列值和第二软件散列值,并验证软件的完整性。
-
-
-
-
-
-
-
-
-
Search Results
10
records
(took 0.019 seconds)
