公开(公告)号：US10530582B2

公开(公告)日：2020-01-07

申请号：US15032182

申请日：2014-10-10

Applicant: Singou Technology Ltd. ,  Macau University of Science and Technology

Inventor： Chi Tin Hon ,  Chan Heng Tam ,  Tai-Hua Ma

IPC: H04L9/32 ,  H04L29/06 ,  H04W12/06 ,  H04W12/00

Abstract: A method and a device for information system access authentication are disclosed. The method includes: performing anonymous authentication to a random verification code generated according to a login request for accessing an information system of a client, and authenticating acquired user name and password information when the anonymous authentication is successful. The device includes an verification code authentication module and a user name and password authentication module connected to the verification code authentication module, wherein the verification code authentication module is configured to perform anonymous authentication to a random verification code generated according to a login request for accessing an information system of client; and the user name and password authentication module is configured to authenticate acquired user name and password information when the anonymous authentication is successful. The present disclosure uses a two-stage and two-factor authentication method such that the security of the login information is improved without increasing the complexity of the user's login.

公开(公告)号：US20160269181A1

公开(公告)日：2016-09-15

申请号：US15032182

申请日：2014-10-10

Applicant: MACAU UNIVERSITY OF SCIENCE AND TECHNOLOGY ,  SINGOU TECHNOLOGY LTD.

Inventor： Chi Tin Hon ,  Chan Heng Tam ,  Tai-Hua Ma

IPC: H04L9/32 ,  H04L29/06

CPC classification number: H04L9/3228 ,  H04L9/3226 ,  H04L9/3249 ,  H04L63/0414 ,  H04L63/0442 ,  H04L63/083 ,  H04L63/18 ,  H04L2209/42 ,  H04L2209/46 ,  H04W12/00522 ,  H04W12/06

Abstract: A method and a device for information system access authentication are disclosed. The method includes: performing anonymous authentication to a random verification code generated according to a login request for accessing an information system of a client, and authenticating acquired user name and password information when the anonymous authentication is successful. The device includes an verification code authentication module and a user name and password authentication module connected to the verification code authentication module, wherein the verification code authentication module is configured to perform anonymous authentication to a random verification code generated according to a login request for accessing an information system of client; and the user name and password authentication module is configured to authenticate acquired user name and password information when the anonymous authentication is successful. The present disclosure uses a two-stage and two-factor authentication method such that the security of the login information is improved without increasing the complexity of the user's login.

Abstract translation: 公开了一种用于信息系统访问认证的方法和装置。 该方法包括：对根据用于访问客户端的信息系统的登录请求生成的随机验证码进行匿名认证，并且在匿名认证成功时对所获取的用户名和密码信息进行认证。 所述设备包括验证码认证模块和连接到所述验证码认证模块的用户名和密码认证模块，其中所述验证码认证模块被配置为对根据用于访问的登录请求生成的随机验证码执行匿名认证 客户信息系统; 并且用户名和密码认证模块被配置为在匿名认证成功时验证获取的用户名和密码信息。 本公开使用两阶段和双因素认证方法，使得登录信息的安全性得到改善，而不增加用户登录的复杂性。

公开(公告)号：US09148439B2

公开(公告)日：2015-09-29

申请号：US14201942

申请日：2014-03-10

Applicant: Macau University of Science and Technology

Inventor： Chi Tin Hon ,  Jia Hua Xu

IPC: G06F21/55 ,  H04L29/06 ,  H04L12/24 ,  H04L12/26

CPC classification number: H04L63/1408 ,  G06F21/55 ,  G06F21/552 ,  H04L41/147 ,  H04L63/1416 ,  H04L63/1425 ,  H04L63/1441 ,  H04L63/20

Abstract: A method of detecting an internet attack against a computing device is disclosed. The method of detecting an internet attack against a computing device comprising the steps of receiving a plurality of incoming network packets; extracting a plurality of incoming feature packets based on the plurality of incoming network packets; predicting a predicted incoming feature packet based on the plurality of incoming feature packets; obtaining a first classification data based on one of the incoming feature packets using a first classifier; obtaining a second classification data based on the predicted incoming feature packet by using a second classifier; and performing at least one remedy action if the first classification data or the second classification data identifies the internet intrusion attack; wherein each of the plurality of incoming feature packets and the predicted incoming feature packet comprise a plurality of incoming features and a plurality of predicted features respectively.

Abstract translation: 公开了一种检测针对计算设备的因特网攻击的方法。 一种检测针对计算设备的因特网攻击的方法，包括以下步骤：接收多个传入网络分组; 基于所述多个传入网络分组来提取多个输入特征分组; 基于所述多个输入特征分组来预测预测的进入特征分组; 使用第一分类器基于所述输入特征分组之一获得第一分类数据; 通过使用第二分类器基于预测的进入特征分组获得第二分类数据; 以及如果所述第一分类数据或所述第二分类数据识别所述互联网入侵攻击，则执行至少一种补救措施; 其中所述多个输入特征分组和所述预测输入特征分组中的每一个分别包括多个输入特征和多个预测特征。

公开(公告)号：US09298913B2

公开(公告)日：2016-03-29

申请号：US14201939

申请日：2014-03-10

Applicant: Macau University of Science and Technology

Inventor： Chi Tin Hon ,  Jia Hua Xu

IPC: G06F9/00 ,  G06F21/55 ,  H04L29/06

CPC classification number: G06F21/55 ,  G06F21/554 ,  G06F2221/034 ,  H04L63/1408 ,  H04L63/1425

Abstract: A method of detecting network intrusion based on improved support vector machine is disclosed. The method comprises the steps of identifying a plurality of features; computing information gain of each of the features; selecting a pre-determined number of features based on the computed information gain and augmenting that set of pre-determined number of features with special features to form a set of selected features; and classifying a network connection based on the selected features using support vector machine. In order to achieve better detection accuracy, cross-validation and grid-search are applied to select the radial basis function for the support vector machine.

Abstract translation: 公开了一种基于改进的支持向量机检测网络入侵的方法。 该方法包括识别多个特征的步骤; 计算每个特征的信息增益; 基于所计算的信息增益来选择预定数量的特征，并且增加具有特殊特征的预定数量的特征的集合以形成所选特征的集合; 并使用支持向量机根据所选择的特征对网络连接进行分类。 为了实现更好的检测精度，应用交叉验证和网格搜索来选择支持向量机的径向基函数。