公开(公告)号：US20150212758A1

公开(公告)日：2015-07-30

申请号：US14605429

申请日：2015-01-26

Applicant: Electronics and Telecommunications Research Institute

Inventor： Sang Su LEE ,  Sung Kyong UN ,  Su Hyung JO ,  Joo Young LEE ,  Keon Woo KIM ,  Woo Yong CHOI

IPC: G06F3/06

CPC classification number: G06F21/552 ,  G06F21/53

Abstract: A forensic analysis system and method using a virtualization interface which performs a forensic investigation or analysis on a corresponding system while minimizing a change in system information and operation interference of a live computer which is being operated is provided. In the forensic analysis system which performs a forensic analysis through a connection between an investigation target computer and an analysis computer, the investigation target computer is configured to execute a collection agent installation program stored in the analysis computer, and transmit analysis target information according to a request of the analysis computer.

Abstract translation: 提供了一种使用虚拟化接口的取证分析系统和方法，该虚拟化接口对相应系统执行法医调查或分析，同时最小化系统信息的变化和正在操作的实时计算机的操作干扰。 在通过调查目标计算机和分析计算机之间的连接执行取证分析的法医分析系统中，调查目标计算机被配置为执行存储在分析计算机中的收集代理安装程序，并且根据 分析计算机的请求。

公开(公告)号：US20140136534A1

公开(公告)日：2014-05-15

申请号：US13946693

申请日：2013-07-19

Applicant: Electronics and Telecommunications Research Institute

Inventor： Joo Young LEE ,  Sung Kyong UN ,  Hyun Sook CHO ,  Youn Hee GIL ,  Keon Woo KIM ,  Young Soo KIM ,  Sang Su LEE ,  Su Hyung JO ,  Woo Yong CHOI

IPC: G06F17/30

CPC classification number: G06Q50/01

Abstract: A similarity calculating method and apparatus are disclosed. A similarity calculating method according to an exemplary embodiment of the present invention includes extracting similarity calculating data, which is determined in advance, by receiving a communication activity record for every user; modeling a communication activity pattern for every user and common information between the users based on the extracted similarity calculating data; and calculating a similarity between users using the modeled communication activity pattern for every user and common information. The modeling includes: modeling the communication activity pattern by calculating a value of a static feature from the similarity calculating data, and modeling the common information by calculating a value of a dynamic feature from the similarity calculating data.

Abstract translation: 公开了一种相似度计算方法和装置。 根据本发明的示例性实施例的相似度计算方法包括：通过接收每个用户的通信活动记录来提取事先确定的相似度计算数据; 基于所提取的相似度计算数据，对每个用户建立通信活动模式和用户之间的公共信息; 以及使用针对每个用户的建模的通信活动模式和公共信息来计算用户之间的相似性。 该建模包括：通过从相似性计算数据计算静态特征的值来建模通信活动模式，以及通过从相似性计算数据计算动态特征的值来建模公共信息。