-
公开(公告)号:US20220394015A1
公开(公告)日:2022-12-08
申请号:US17467812
申请日:2021-09-07
Inventor: Seung-Hun HAN , Ju-Hyung SON , Tae-Ho NAM , Ara JO , Gak-Soo LIM , Byung-Joon KIM
IPC: H04L29/06 , G06F9/4401 , G06F8/61
Abstract: Disclosed herein are a method for establishing a remote work environment for ensuring the security of a user terminal for remote work and an apparatus using the method. The method, performed by the apparatus, includes acquiring media image creation information from a user; creating a certificate for VPN access based on the media image creation information and creating a media image using the media image creation information and the certificate for VPN access; and providing the media image to the user such that the user is able to create a medium for remote work. The user terminal for remote work is booted through the medium for remote work, thereby configuring a runtime environment for remote work in which security is ensured.
-
2.发明公开公开(公告)号:US20230376591A1
公开(公告)日:2023-11-23
申请号:US17953498
申请日:2022-09-27
Inventor: Sung-Jin KIM , In-Hyeok JANG , Woo-Min HWANG , Byung-Chul BAE , Byung-Joon KIM
CPC classification number: G06F21/554 , G06F21/53 , G06F2221/034
Abstract: Disclosed herein is a method for processing a security event in a container virtualization environment. The method may include collecting designated security events in a kernel space, storing the collected security events in a security event storage module in real time, and providing a security manager with the security event corresponding to a query request from a security event management module, among the security events stored in the security event storage module.
-
公开(公告)号:US20190012465A1
公开(公告)日:2019-01-10
申请号:US15938017
申请日:2018-03-28
Inventor: Sung-Jin KIM , Hyunyi YI , Seong-Joong KIM , Woomin HWANG , Byung-Joon KIM , Chulwoo LEE , Hyoung-Chun KIM
CPC classification number: G06F21/575 , G06F9/45533 , G06F9/45558 , G06F21/53 , G06F21/552 , G06F21/554 , G06F21/566 , G06F2009/45575 , G06F2009/45587 , G06F2009/45591 , G06F2221/034 , G06F2221/2101
Abstract: An apparatus and method for collecting an audit trail in a virtual machine boot process, the audit-trail-collecting apparatus including an event detection unit for detecting a software interrupt event, a register state information extraction unit for extracting state information of a CPU register corresponding to a detection time of the software interrupt event, a monitoring unit for monitoring a change in a vector value corresponding to the software interrupt event in an interrupt vector table, a threat occurrence detection unit for detecting a threat occurrence in a virtual machine boot process based on at least one of the CPU register state information and a monitored result, and an audit trail collection unit for storing an audit trail corresponding to at least one of the CPU register state information and the monitored result when the threat occurrence is detected in the virtual machine boot process.
-
公开(公告)号:US20190166123A1
公开(公告)日:2019-05-30
申请号:US15980945
申请日:2018-05-16
Inventor: Seunghun HAN , Hyun Ku KIM , Wook SHIN , Byung-Joon KIM , Hyoung-Chun KIM
IPC: H04L29/06
Abstract: A user terminal using cloud service, an integrated security management server for the user terminal, and an integrated security management method for the user terminal. The integrated security management method includes receiving, by an integrated security management server, authentication information from at least one user terminal that use a cloud service, authenticating, by the integrated security management server, the user terminal using the authentication information, transmitting, by the integrated security management server, task information to the user terminal so as to control the user terminal, receiving, by the integrated security management server, at least one of a result of processing the task information and state information from the user terminal that verifies the task information, and managing, by the integrated security management server, a state of the user terminal based on at least one of the result of processing and the state information.
-
Patent Agency Ranking
公开(公告)号:US20180300182A1
公开(公告)日:2018-10-18
申请号:US15810790
申请日:2017-11-13
Inventor: Woomin HWANG , Sung-Jin KIM , Byung-Joon KIM , Hyunyi YI , Chulwoo LEE , Hyoung-Chun KIM
Abstract: A hypervisor-based virtual machine isolation apparatus and method. The hypervisor-based virtual machine isolation method performed by the hypervisor-based virtual machine isolation apparatus includes when a hypervisor starts to run virtual machines, allocating one or more colors to each of the virtual machines, allocating a page frame corresponding to the allocated colors to the corresponding virtual machine, allocating an accessible core depending on the colors of the virtual machine, and performing isolation between virtual machines corresponding to an identical color by changing a temporal/spatial scheduling order between the virtual machines corresponding to the identical color.
-
公开(公告)号:US20230016571A1
公开(公告)日:2023-01-19
申请号:US17489032
申请日:2021-09-29
Inventor: Seung-Hun HAN , Seong-Joong KIM , Gak-Soo LIM , Byung-Joon KIM
Abstract: Disclosed herein are an apparatus and method for preventing a security threat to a virtual machine. The apparatus includes one or more processors and executable memory for storing at least one program executed by the one or more processors. The at least one program is configured such that a hypervisor for virtualization in a host kernel executes a virtualization instruction corresponding to the service requested by a virtual machine of a host application and such that a hypervisor for monitoring interrupts the virtualization instruction in response to a security threat event occurring in the monitoring area of the hypervisor for virtualization and controls the process and thread of the host kernel. The hypervisor for monitoring is located in an area separate from the area in which the hypervisor for virtualization is located in the host kernel.
-
公开(公告)号:US20190044946A1
公开(公告)日:2019-02-07
申请号:US15938003
申请日:2018-03-28
Inventor: Woomin HWANG , Hyunyi YI , Sung-Jin KIM , Seong-Joong KIM , Chulwoo LEE , Byung-Joon KIM , Hyoung-Chun KIM
Abstract: An apparatus for monitoring file access in a virtual machine in a cloud-computing system based on a virtualized environment includes a hypervisor for implementing at least one virtual machine and managing the virtual machine by monitoring a task in which a the virtual machine accesses a file loaded from storage to memory, the storage storing data including environment information of the virtual machine.
-
8.发明申请公开(公告)号:US20190012194A1
公开(公告)日:2019-01-10
申请号:US15975932
申请日:2018-05-10
Inventor: Hyunyi YI , Sung-Jin KIM , Woomin HWANG , Seong-Joong KIM , Chulwoo LEE , Byung-Joon KIM , Hyoung-Chun KIM
Abstract: An apparatus and method for storing an audit trail in response to execution of a virtual-machine process. The method for storing an audit trail, performed by the apparatus for storing an audit trail in response to execution of a virtual-machine process, includes detecting execution of a process inside a virtual machine, determining whether the executed process is a monitoring target process and determining a type of the process, activating one or more monitoring events for monitoring at least one of an upload, a download and a drop by the process based on a result of the determination, and storing information about occurrence of the activated monitoring event as an audit trail.
-
公开(公告)号:US20180246710A1
公开(公告)日:2018-08-30
申请号:US15656206
申请日:2017-07-21
Inventor: Sung-Jin KIM , Woomin HWANG , Byung-Joon KIM , Hyun-Yi YI , Chul-Woo LEE , Hyoung-Chun KIM
CPC classification number: G06F8/65 , G06F9/4406 , G06F9/45558 , G06F2009/45591
Abstract: A software update apparatus and method in a virtualized environment. The software update method performed by a software update apparatus in a virtualized environment includes monitoring an operation that is invoked when software is updated in a guest operating system area, creating a software profile by analyzing results of the monitoring, mounting a virtual disk image for a target virtual machine in a target directory in a virtual machine monitor area, and incorporating update information of at least one of a file and a registry that are specified in the software profile into the target directory in which the virtual disk image is mounted.
-
-
-
-
-
-
-
-
Search Results
9
records
(took 0.015 seconds)
