公开(公告)号：US20190044730A1

公开(公告)日：2019-02-07

申请号：US15994049

申请日：2018-05-31

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Samuel WOO ,  Dae-Sung MOON ,  Kyung-Min PARK ,  Jooyoung LEE ,  IK-KYUN KIM ,  Seung-Hun JIN ,  Ho HWANG

IPC: H04L9/32 ,  H04L29/06

Abstract: Disclosed herein are an apparatus and method for generating and operating a dynamic Controller Area Network (CAN) Identifier (ID). The apparatus includes a priority ID generation unit for generating a priority ID that is a base ID, a dynamic ID generation unit for generating a dynamic ID that is dynamically changed, and a communication unit for transmitting/receiving a data frame in which a dynamic CAN ID including the priority ID and the dynamic ID is combined with data.

公开(公告)号：US20190052663A1

公开(公告)日：2019-02-14

申请号：US15985452

申请日：2018-05-21

Applicant: Electronics and Telecommunications Research Institute

Inventor： Jooyoung LEE ,  Dae-Sung MOON ,  Kyung-Min PARK ,  Samuel WOO ,  Ho HWANG ,  Ik-Kyun KIM ,  Seung-Hun JIN

IPC: H04L29/06

CPC classification number: H04L63/1433 ,  H04L63/1425 ,  H04L63/20

Abstract: Disclosed herein is an apparatus for enhancing network security, which includes an information collection unit for collecting information about states of hosts that form a network and information about connectivity in the network; an attack surface analysis unit for analyzing attack surfaces by creating an attack graph using the information about the states and the information about connectivity; a security-enhancing strategy establishment unit for establishing a security-enhancing strategy based on the attack graph; and a security-enhancing strategy implementation unit for delivering a measure based on the security-enhancing strategy to a corresponding host, thereby taking a security-enhancing measure.

公开(公告)号：US20200099704A1

公开(公告)日：2020-03-26

申请号：US16578511

申请日：2019-09-23

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Joo Young LEE ,  Ki Jong KOO ,  Ik Kyun KIM ,  Dae Sung MOON ,  Kyung Min PARK ,  Samuel WOO ,  Ho HWANG

IPC: H04L29/06 ,  H04L12/24

Abstract: Disclosed are a method and apparatus for searching for an attack path. The apparatus generates an attack graph, generates an attack graph ontology, generates a semantic attack graph by imparting semantics to the attack graph on the basis of the attack graph ontology, and searches for the attack path on the basis of the semantic attack graph.

公开(公告)号：US20200153861A1

公开(公告)日：2020-05-14

申请号：US16679622

申请日：2019-11-11

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Kyung-Min PARK ,  Dae-Sung MOON ,  Ki-Jong KOO ,  Ik-Kyun KIM ,  Samuel WOO ,  Joo-Young LEE

IPC: H04L29/06 ,  H04L29/12 ,  H04L12/741

Abstract: Disclosed herein are a decoy apparatus and a method for expanding a fake attack surface using a deception network. The method includes determining, by a protected server, whether a packet is a target to be processed when the packet is received; converting, by the protected server, the packet and transmitting, by the protected server, the converted packet to the decoy apparatus of the deception network when the packet is determined not to be such a target; receiving, by the protected server, a response packet from a decoy virtual machine included in the decoy apparatus as a reply to the converted packet; and modifying, by the protected server, the response packet and transmitting, by the protected server, the modified response packet to the source from which the packet was transmitted, in order to expand the fake attack surface.

公开(公告)号：US20200007496A1

公开(公告)日：2020-01-02

申请号：US16452682

申请日：2019-06-26

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Kyung-Min PARK ,  Samuel WOO ,  Dae-Sung MOON ,  Ki-Jong KOO ,  Ik-Kyun KIM ,  Joo-Young LEE

IPC: H04L29/12 ,  H04L29/06 ,  H04L9/08

Abstract: Disclosed herein are a server apparatus, a client apparatus, and a method for communication based on network address mutation. The method for communication based on network address mutation, performed by the server apparatus and the client apparatus, includes setting the external address of a network interface for receiving a packet from the client apparatus; setting the internal address of a hidden interface in order to forward the packet received through the network interface to the hidden interface; modifying the external address based on a preset network address mutation rule; and communicating with the client apparatus by forwarding the packet, received from the client apparatus based on the modified external address, to the hidden interface.