公开(公告)号：US20080092207A1

公开(公告)日：2008-04-17

申请号：US11553227

申请日：2006-10-26

申请人： Hyung-Jong Kim ,  Jun Yoon ,  Won Tae Sim ,  Woo-Han Kim

发明人： Hyung-Jong Kim ,  Jun Yoon ,  Won Tae Sim ,  Woo-Han Kim

IPC分类号： H04L9/32

CPC分类号： G06N5/00 ,  H04L63/00

摘要： Disclosed is a system integration method based on a system entity structure (SES). The method comprises steps of (a) analyzing an integration target system to extract a technology attribute and to represent the integration target system as a system entity structure (SES); and (b) carrying out a pruning operation for constitution elements of the integration target system represented as the system entity structure (SES) in the step (a), in consideration of the technology attribute extracted in the step (a), an environmental factor and a pruning rule, which being a basis for selection of constitutional technological elements. The invention is particularly effective for an integration target system having various element technologies such as information security system.

摘要翻译： 公开了一种基于系统实体结构（SES）的系统集成方法。 该方法包括以下步骤：（a）分析集成目标系统以提取技术属性并将整合目标系统表示为系统实体结构（SES）; 和（b）考虑到在步骤（a）中提取的技术属性，对步骤（a）中表示为系统实体结构（SES）的整合目标系统的构成要素进行修剪操作，环境因素 和修剪规则，这是选择宪法技术要素的基础。 本发明对于具有信息安全系统等各种要素技术的集成对象系统特别有效。

公开(公告)号：US20080095187A1

公开(公告)日：2008-04-24

申请号：US11553253

申请日：2006-10-26

申请人： Tae In JUNG ,  Myeong-Seok Cha ,  Hyung-Jong Kim ,  Won Tae Sim ,  Woo-Han Kim

发明人： Tae In JUNG ,  Myeong-Seok Cha ,  Hyung-Jong Kim ,  Won Tae Sim ,  Woo-Han Kim

IPC分类号： H04J3/22

CPC分类号： H04L43/0882 ,  H04L41/0896 ,  H04L43/10 ,  H04L43/106 ,  H04L69/28

摘要： Disclosed is a method for estimating an available bandwidth of a network link by transmitting small-sized probing packets using a time stamp function of an Internet control message protocol (ICMP) and using time information of the probing packet returned. According to the invention, even when the separate program or function is not activated in the router, it is possible to easily estimate and monitor the available bandwidth of the exterior network link connected to the network being managed. Accordingly, it is possible to operate the network more stably and to detect the abnormal sign of the network at early stage, thereby quickly coping with it. In addition, it is possible to prevent the excessive traffic or load from being caused in the network.

摘要翻译： 公开了一种通过使用因特网控制消息协议（ICMP）的时间戳功能并使用返回的探测分组的时间信息来发送小型探测分组来估计网络链路的可用带宽的方法。 根据本发明，即使在路由器中没有激活单独的程序或功能的情况下，也可以容易地估计和监视连接到被管理的网络的外部网络链路的可用带宽。 因此，可以更稳定地操作网络，并且能够早期检测网络的异常信号，从而快速应对网络。 另外，可以防止在网络中引起过多的流量或负载。

公开(公告)号：US20080092237A1

公开(公告)日：2008-04-17

申请号：US11553196

申请日：2006-10-26

申请人： Jun YOON ,  Kyoung Hee Ko ,  Tae In Jung ,  Won Tae Sim ,  Woo Han Kim

发明人： Jun YOON ,  Kyoung Hee Ko ,  Tae In Jung ,  Won Tae Sim ,  Woo Han Kim

IPC分类号： G06F11/00 ,  G06F12/14 ,  G06F12/16 ,  G06F15/18 ,  G08B23/00

CPC分类号： H04L41/00 ,  G06F21/577 ,  H04L41/046 ,  H04L41/0893 ,  H04L41/22 ,  H04L63/1433

摘要： An integrative analysis system and method of network vulnerability utilizing multiple heterogeneous vulnerability scanners to enhance the accuracy of the network vulnerability analysis are provided. The method comprises a scanning policy setting-up step of setting-up a common scanning policy able to be adapted to the multiple heterogeneous vulnerability scanners and specifying the policy for the respective vulnerability scanners, a vulnerability scanning and result collecting step of performing for the multiple heterogeneous vulnerability scanners to scan, to collect a result thereof, and to store the same in a database and a scanning result integrative analysis step of performing a relevance analysis and an integrative analysis on the scanning results collected, thereby obtaining a complementary vulnerability scanning utilizing multiple heterogeneous vulnerability scanners, enhancing the accuracy and the comprehension of the scanning results, and obtaining a comprehensive vulnerability analysis on a network.

摘要翻译： 提供了利用多种异构漏洞扫描器的网络漏洞综合分析系统和方法，提高了网络漏洞分析的准确性。 该方法包括：扫描策略设置步骤，用于设置能够适应于多个异构的脆弱性扫描器的公共扫描策略，并指定相应的漏洞扫描器的策略;脆弱性扫描和结果收集步骤，用于执行多个 异构脆弱性扫描器进行扫描，收集其结果并将其存储在数据库中，以及扫描结果综合分析步骤，对所收集的扫描结果执行相关性分析和综合分析，从而获得利用多个 异构漏洞扫描器，提高扫描结果的准确性和理解性，并在网络上获得全面的脆弱性分析。