-
1.发明授权Method for neutralizing the ARP spoofing attack by using counterfeit MAC addresses 有权使用伪造MAC地址中和ARP欺骗攻击的方法公开(公告)号:US08578488B2
公开(公告)日:2013-11-05
申请号:US13121809
申请日:2008-11-18
申请人: Hyoung-Bae Park , Yun-Seok Lee , Kyu-Min Choi , Kyoung-Pil Kong , Pil-Sang You , Sung-Goo Kim
发明人: Hyoung-Bae Park , Yun-Seok Lee , Kyu-Min Choi , Kyoung-Pil Kong , Pil-Sang You , Sung-Goo Kim
CPC分类号: H04L63/1466 , H04L29/12028 , H04L61/103
摘要: The present invention is related to a method for neutralizing a malicious ARP spoofing attack generated in a local network and in particular, the present invention provides a method for neutralizing an ARP spoofing attack comprising a step for detecting an ARP spoofing attack based on an ARP request packet generated for an ARP spoofing attack; a step for generating a plurality of counterfeit MAC addresses and dynamically changing MAC addresses of network devices or servers which are to be protected whenever an ARP spoofing attack is generated; and a step for neutralizing an ARP spoofing attack by using a counterfeit MAC address which is capable of neutralizing an ARP spoofing attack adequately.
摘要翻译: 本发明涉及一种中和本地网络中产生的恶意ARP欺骗攻击的方法,特别是本发明提供一种中和ARP欺骗攻击的方法,包括:基于ARP请求检测ARP欺骗攻击的步骤 为ARP欺骗攻击而生成的报文; 一旦生成ARP欺骗攻击就产生多个伪造MAC地址和动态地改变要被保护的网络设备或服务器的MAC地址的步骤; 以及通过使用能够充分中和ARP欺骗攻击的伪造MAC地址来中和ARP欺骗攻击的步骤。
-
2.发明申请METHOD FOR ALLOWING AND BLOCKING A USER PC WHICH CAN USE INTERNET AT THE SAME TIME IN A PRIVATE NETWORK THEROF A METHOD FOR ANALYZING AND DETECTING A JUDGEMENT ABOUT WHETHER NAT(NETWORK ADDRESS TRANSLATION) CAN BE USED OR NOT USING A TRAFFIC DATA, AND THE NUMBER OF TERMINALS SHARING NAT 有权允许和阻止可在其私有网络中在同一时间使用互联网的用户PC的方法一种用于分析和检测关于可以使用NAT(网络地址转换)或不使用交通数据和数字的判断的方法 终端共享NAT公开(公告)号:US20110185060A1
公开(公告)日:2011-07-28
申请号:US13121733
申请日:2008-10-28
申请人: Hyoung-Bae Park , Yun-Seok Lee , Kyu-Min Choi , Kyoung-Pil Kong , Pil-Sang You , Sung-Goo Kim
发明人: Hyoung-Bae Park , Yun-Seok Lee , Kyu-Min Choi , Kyoung-Pil Kong , Pil-Sang You , Sung-Goo Kim
IPC分类号: G06F15/173
CPC分类号: H04L63/0227 , H04L29/12367 , H04L61/2514
摘要: The present invention provides a method consisting of a step for analyzing a traffic receiving mirroring, a step for judging whether NAT (Network Address Translation) use of a client configuring and using a private network as well as a provided authorized IP (an Internet IP) is allowed or not, for analyzing and detecting the number of sharing terminals, a step for creating a database using data, and a step for formulating a policy by using information in database, so that when the users of a private network connect to Internet at the same time, permission or blocking of Internet use can be executed selectively.
摘要翻译: 本发明提供了一种方法,包括分析业务接收镜像的步骤,用于判断配置和使用专用网络的客户端的NAT(网络地址转换)使用以及所提供的授权IP(因特网IP)的步骤, 是否允许用于分析和检测共享终端的数量,使用数据创建数据库的步骤以及通过使用数据库中的信息来制定策略的步骤,使得当私有网络的用户以互联网方式连接到互联网时 同时,可以有选择地执行互联网使用的许可或阻止。
-
3.发明授权Method for allowing and blocking a user PC which can use internet at the same time in a private network thereof a method for analyzing and detecting a judgement about whether NAT(network address translation) can be used or not using a traffic data, and the number of terminals sharing NAT 有权允许和阻止可以在专用网络中同时使用因特网的用户PC的方法,用于分析和检测关于是否可以使用交通数据的NAT(网络地址转换)的判断的方法,以及数字 的终端共享NAT公开(公告)号:US08661133B2
公开(公告)日:2014-02-25
申请号:US13121733
申请日:2008-10-28
申请人: Hyoung-Bae Park , Yun-Seok Lee , Kyu-Min Choi , Kyoung-Pil Kong , Pil-Sang You , Sung-Goo Kim
发明人: Hyoung-Bae Park , Yun-Seok Lee , Kyu-Min Choi , Kyoung-Pil Kong , Pil-Sang You , Sung-Goo Kim
CPC分类号: H04L63/0227 , H04L29/12367 , H04L61/2514
摘要: The present invention provides according to an embodiment a method including analyzing traffic; judging whether NAT (Network Address Translation) use of a client configuring and using a private network as well as a being provided an authorized IP address (an Internet IP address) is allowed or not, for analyzing and detecting a number of sharing terminals; creating a database using data; and formulating a policy by using information in the database, so that when users of the private network connect to the Internet at the same time, permission or blocking of Internet use can be executed selectively.
摘要翻译: 本发明根据实施例提供了一种分析业务的方法; 判断NAT(网络地址转换)是否使用配置和使用专用网络的客户端以及被提供的授权IP地址(互联网IP地址),用于分析和检测多个共享终端; 使用数据创建数据库; 并且通过使用数据库中的信息来制定策略,使得当专用网络的用户同时连接到因特网时,可以选择性地执行对互联网使用的许可或阻止。
-
4.发明申请METHOD FOR NEUTRALIZING THE ARP SPOOFING ATTACK BY USING COUNTERFEIT MAC ADDRESSES 有权通过使用COUNTERFEIT MAC地址来中断ARP欺骗攻击的方法公开(公告)号:US20110179486A1
公开(公告)日:2011-07-21
申请号:US13121809
申请日:2008-11-18
申请人: Hyoung-Bae Park , Yun-Seok Lee , Kyu-Min Choi , Kyoung-Pil Kong , Pil-Sang You , Sung-Goo Kim
发明人: Hyoung-Bae Park , Yun-Seok Lee , Kyu-Min Choi , Kyoung-Pil Kong , Pil-Sang You , Sung-Goo Kim
IPC分类号: G06F21/20
CPC分类号: H04L63/1466 , H04L29/12028 , H04L61/103
摘要: The present invention is related to a method for neutralizing a malicious ARP spoofing attack generated in a local network and in particular, the present invention provides a method for neutralizing an ARP spoofing attack comprising a step for detecting an ARP spoofing attack based on an ARP request packet generated for an ARP spoofing attack; a step for generating a plurality of counterfeit MAC addresses and dynamically changing MAC addresses of network devices or servers which are to be protected whenever an ARP spoofing attack is generated; and a step for neutralizing an ARP spoofing attack by using a counterfeit MAC address which is capable of neutralizing an ARP spoofing attack adequately.
摘要翻译: 本发明涉及一种中和本地网络中产生的恶意ARP欺骗攻击的方法,特别是本发明提供一种中和ARP欺骗攻击的方法,包括:基于ARP请求检测ARP欺骗攻击的步骤 为ARP欺骗攻击而生成的报文; 一旦生成ARP欺骗攻击就产生多个伪造MAC地址和动态地改变要被保护的网络设备或服务器的MAC地址的步骤; 以及通过使用能够充分中和ARP欺骗攻击的伪造MAC地址来中和ARP欺骗攻击的步骤。
-
公开(公告)号:US09270702B2
公开(公告)日:2016-02-23
申请号:US13883161
申请日:2011-11-02
申请人: Hyoung-Bae Park , Jeong-Ah Kim , Kyu-Min Choi , Yun-Seok Lee , Sung-Goo Kim
发明人: Hyoung-Bae Park , Jeong-Ah Kim , Kyu-Min Choi , Yun-Seok Lee , Sung-Goo Kim
CPC分类号: H04L63/20 , H04L63/102 , H04W12/08 , H04W84/045
摘要: The present invention relates to a method of implementing a security system for preemptively preventing a decrease in work efficiency due to leaked confidential secrets or the browsing of non work-related sites through a mobile terminal. A security manager implements an environment for allowing, blocking, or recording Internet usage in an independent mobile communication network in an area requiring security, uses a security system server to preregister information on mobile terminals of users who are expected to use the Internet, makes agreements on how personal information will be handled when outside visitors visit the network, registers information on mobile terminals of outside visitors with the security system server, and oversees the installation of a security app whenever necessary.
摘要翻译: 本发明涉及一种实现安全系统的方法,用于通过移动终端预防性地防止由于泄漏的机密秘密或非工作相关站点的浏览而降低工作效率。 安全管理员在需要安全性的区域中实现在独立移动通信网络中允许,阻止或记录互联网使用的环境,使用安全系统服务器预先注册预期使用互联网的用户的移动终端上的信息, 关于外部访问者访问网络时如何处理个人信息,请在安全系统服务器上注册外部访问者的移动终端的信息,并在必要时监督安全应用程序的安装。
-
公开(公告)号:US20130283341A1
公开(公告)日:2013-10-24
申请号:US13883161
申请日:2011-11-02
申请人: Hyoung-Bae Park , Jeong-Ah Kim , Kyu-Min Choi , Yun-Seok Lee , Sung-Goo Kim
发明人: Hyoung-Bae Park , Jeong-Ah Kim , Kyu-Min Choi , Yun-Seok Lee , Sung-Goo Kim
IPC分类号: H04L29/06
CPC分类号: H04L63/20 , H04L63/102 , H04W12/08 , H04W84/045
摘要: The present invention relates to a method of implementing a security system for preemptively preventing a decrease in work efficiency due to leaked confidential secrets or the browsing of non work-related sites through a mobile terminal. A security manager implements an environment for allowing, blocking, or recording Internet usage in an independent mobile communication network in an area requiring security, uses a security system server to preregister information on mobile terminals of users who are expected to use the Internet, makes agreements on how personal information will be handled when outside visitors visit the network, registers information on mobile terminals of outside visitors with the security system server, and oversees the installation of a security app whenever necessary.
摘要翻译: 本发明涉及一种实现安全系统的方法,用于通过移动终端预防性地防止由于泄漏的机密秘密或非工作相关站点的浏览而降低工作效率。 安全管理员在需要安全性的区域中实现在独立移动通信网络中允许,阻止或记录互联网使用的环境,使用安全系统服务器预先注册预期使用互联网的用户的移动终端上的信息, 关于外部访问者访问网络时如何处理个人信息,请在安全系统服务器上注册外部访问者的移动终端的信息,并在必要时监督安全应用程序的安装。
-
7.发明授权Method for permitting and blocking use of internet by detecting plural terminals on network 有权通过检测网络上的多个终端来允许和阻止使用互联网的方法公开(公告)号:US08230007B2
公开(公告)日:2012-07-24
申请号:US12681748
申请日:2008-10-08
申请人: Yun-Seok Lee , Jeong-Ah Kim , Kyu-Min Choi , Se-Eun Cheon , Kyoung-Pil Kong
发明人: Yun-Seok Lee , Jeong-Ah Kim , Kyu-Min Choi , Se-Eun Cheon , Kyoung-Pil Kong
IPC分类号: G06F15/173
CPC分类号: H04L41/12 , H04L41/0893 , H04L63/14 , H04L67/22
摘要: The present invention is related to a technology for grasping the number of a plurality of terminals of a client using a Cookie in a private network in which plural terminals are shared by redirecting a session which is to be connected to a Web by analyzing a TCP/IP packet, detecting the accurate number of a plurality of terminals of a client using an Internet, and making the accurate number as a DB, and selectively permitting or blocking a connection to Internet according to TCP/IP by using the Cookie pool information of a DB type and JOB when the users configuring and using a private network connect to the Internet at the same time.
摘要翻译: 本发明涉及一种用于通过分析TCP / IP协议来重定向要连接到Web的会话的私有网络中的使用Cookie的客户端的多个终端的数量的技术, IP数据包,使用因特网检测客户端的多个终端的准确数量,并将准确的号码作为数据库,并根据TCP / IP选择性地允许或阻止与因特网的连接,通过使用 当配置和使用专用网络的用户同时连接到Internet时,DB类型和JOB。
-
8.发明申请METHOD FOR PERMITTING AND BLOCKING USE OF INTERNET BY DETECTING PLURAL TERMINALS ON NETWORK 有权通过检测网络上的终端来允许和阻止使用互联网的方法公开(公告)号:US20100274799A1
公开(公告)日:2010-10-28
申请号:US12681748
申请日:2008-10-08
申请人: Yun-Seok Lee , Jeong-Ah Kim , Kyu-Min Choi , Se-Eun Cheon , Kyoung-Pil Kong
发明人: Yun-Seok Lee , Jeong-Ah Kim , Kyu-Min Choi , Se-Eun Cheon , Kyoung-Pil Kong
CPC分类号: H04L41/12 , H04L41/0893 , H04L63/14 , H04L67/22
摘要: The present invention is related to a technology for grasping the number of a plurality of terminals of a client using a Cookie in a private network in which plural terminals are shared by redirecting a session which is to be connected to a Web by analyzing a TCP/IP packet, detecting the accurate number of a plurality of terminals of a client using an Internet, and making the accurate number as a DB, and selectively permitting or blocking a connection to Internet according to TCP/IP by using the Cookie pool information of a DB type and JOB when the users configuring and using a private network connect to the Internet at the same time.
摘要翻译: 本发明涉及一种用于通过分析TCP / IP协议来重定向要连接到Web的会话的私有网络中的使用Cookie的客户端的多个终端的数量的技术, IP数据包,使用因特网检测客户端的多个终端的准确数量,并将准确的号码作为数据库,并根据TCP / IP选择性地允许或阻止与因特网的连接,通过使用 当配置和使用专用网络的用户同时连接到Internet时,DB类型和JOB。
-
公开(公告)号:US20130286872A1
公开(公告)日:2013-10-31
申请号:US13882724
申请日:2011-11-07
申请人: Kyu-Min Choi
发明人: Kyu-Min Choi
IPC分类号: H04L12/26
CPC分类号: H04L43/08 , H04L43/022 , H04L43/026 , H04L43/028
摘要: The present invention relates to a session-based traffic analysis system that may accurately analyze an amount of traffic for each transmission control protocol (TCP) connection using only one-way packets. The system may accurately analyze an amount of two-way traffic using only one-way connection information.
摘要翻译: 本发明涉及一种基于会话的业务分析系统,其可以使用单向分组来精确地分析每个传输控制协议(TCP)连接的业务量。 系统可以使用单向连接信息准确分析双向流量。
-
公开(公告)号:US09270550B2
公开(公告)日:2016-02-23
申请号:US13882724
申请日:2011-11-07
申请人: Kyu-Min Choi
发明人: Kyu-Min Choi
CPC分类号: H04L43/08 , H04L43/022 , H04L43/026 , H04L43/028
摘要: The present invention relates to a session-based traffic analysis system that may accurately analyze an amount of traffic for each transmission control protocol (TCP) connection using only one-way packets. The system may accurately analyze an amount of two-way traffic using only one-way connection information.
摘要翻译: 本发明涉及一种基于会话的业务分析系统,其可以使用单向分组来精确地分析每个传输控制协议(TCP)连接的业务量。 系统可以使用单向连接信息准确分析双向流量。
-
-
-
-
-
-
-
-
-
搜索结果
10 条记录 (耗时 0.028 秒)