公开(公告)号：US20090265201A1

公开(公告)日：2009-10-22

申请号：US12426678

申请日：2009-04-20

申请人： Min Sik KIM ,  Jung Gil PARK ,  Soon Jwa HONG ,  Peter Hoh In ,  Taek LEE

发明人： Min Sik KIM ,  Jung Gil PARK ,  Soon Jwa HONG ,  Peter Hoh In ,  Taek LEE

IPC分类号： G06Q10/00

CPC分类号： G06Q40/06

摘要： Provided are a method and apparatus for determining a security solution. The method and apparatus generate a security solution analysis model for analyzing effects on investment of security solution combinations consisting of several security solution candidates on the basis of integer programming (IP), standardize various constraints that have significant effects on security solution determination on the basis of IP, and apply the standardized constraints to the security solution analysis model, thereby determining a security solution combination having the smallest residual risk while satisfying the constraints as an optimum security solution combination.According to the method and apparatus, an optimum security solution combination that can minimize a residual risk while satisfying various constraints is rapidly and accurately determined. Thus, it is possible to support effective determination in information security investment.

摘要翻译： 提供了一种用于确定安全解决方案的方法和装置。 该方法和设备生成一个安全解决方案分析模型，用于分析由基于整数规划（IP）的几个安全解决方案候选者组成的安全解决方案组合对投资的影响，标准化对基于安全解决方案确定有重大影响的各种约束 IP，并将标准化约束应用于安全解决方案分析模型，从而确定具有最小剩余风险的安全解决方案组合，同时满足约束作为最佳安全解决方案组合。 根据该方法和装置，可以快速，准确地确定在满足各种约束的情况下最小化剩余风险的最佳安全解决方案组合。 因此，有可能支持信息安全投资的有效决定。

公开(公告)号：US20090260085A1

公开(公告)日：2009-10-15

申请号：US12208708

申请日：2008-09-11

申请人： Min Sik KIM ,  Jong Moon LEE ,  Hyun Dong PARK ,  Soon Jwa HONG

发明人： Min Sik KIM ,  Jong Moon LEE ,  Hyun Dong PARK ,  Soon Jwa HONG

IPC分类号： G06F21/00

CPC分类号： H04L63/14 ,  G06F21/554 ,  G06F21/564

摘要： Provided are an apparatus, system and method for blocking malicious code. The apparatus includes a first malicious code detector for determining whether or not a received e-mail includes malicious code, on the basis of previously stored malicious code patterns, a second malicious code detector for performing second malicious code detection on a received e-mail determined by the first malicious code detector not to include malicious code, a pattern extractor for extracting a new malicious code pattern from malicious code detected by the second malicious code detector, and a transceiver for transferring the extracted new malicious code pattern to a pattern providing server. According to the apparatus, system and method, when one terminal detects a new malicious code pattern, a pattern providing server rapidly provides the new malicious code pattern to other terminals, and thus it is possible to rapidly and flexibly cope with the spread of malicious codes having new patterns

摘要翻译： 提供了用于阻止恶意代码的装置，系统和方法。 该装置包括第一恶意代码检测器，用于基于先前存储的恶意代码模式来确定接收到的电子邮件是否包括恶意代码;第二恶意代码检测器，用于对所接收的电子邮件进行第二恶意代码检测 由第一恶意代码检测器不包括恶意代码，用于从由第二恶意代码检测器检测到的恶意代码提取新的恶意代码模式的模式提取器，以及用于将所提取的新的恶意代码模式传送到模式提供服务器的收发器。 根据装置，系统和方法，当一个终端检测到新的恶意代码模式时，模式提供服务器迅速向其他终端提供新的恶意代码模式，因此可以快速灵活地应对恶意代码的扩展 有新的模式