-
Patent Agency Ranking
公开(公告)号:US20210306304A1
公开(公告)日:2021-09-30
申请号:US16933427
申请日:2020-07-20
Inventor: Woomin HWANG , Chulwoo LEE , Sung-Jin KIM , Hyunyi YI , Byungjoon KIM
Abstract: A method and apparatus for distributing confidential execution software. The method includes loading a payload into memory in a confidential execution region, checking a vulnerability related to the payload, generating bridge code for calling a function that is not present in the payload, among functions used in the payload, generating confidential execution code for generating a confidential execution region in a target cloud node having privileges to execute the payload, encrypting the payload, and distributing the confidential execution code and the encrypted payload.
-
2.发明公开公开(公告)号:US20240320308A1
公开(公告)日:2024-09-26
申请号:US18218320
申请日:2023-07-05
Inventor: Woomin HWANG , Sung-Jin KIM , Inhyeok JANG , Byung Chul BAE , Byungjoon KIM
CPC classification number: G06F21/14 , G06F21/602 , G06F21/74
Abstract: Disclosed herein are an apparatus and method for code randomization in a confidential execution region based on Intel Software Guard eXtensions (SGX) for a user application and a shared library. The method may include initializing a confidential execution region by executing an SGX enclave shared object file generated and distributed by a publisher device, loading an encrypted payload into memory, acquiring a decryption key for decrypting the encrypted payload, decrypting the payload, and placing the decrypted payload in the confidential execution region in units of basic blocks with reference to metadata distributed by the publisher device.
-
公开(公告)号:US20250013556A1
公开(公告)日:2025-01-09
申请号:US18405059
申请日:2024-01-05
Inventor: Inhyeok JANG , Suh-Ho LEE , Sung-Jin KIM , Ju-Hyung SON , Byungjoon KIM
IPC: G06F11/36
Abstract: Disclosed herein is an apparatus and method for extracting and analyzing runtime software execution information. The apparatus may include a collection unit for collecting execution-related data by tracing functions of an operating system on which software is executed or access to data and an analysis unit for generating required information by analyzing the collected execution-related data.
-
公开(公告)号:US20210390172A1
公开(公告)日:2021-12-16
申请号:US16944480
申请日:2020-07-31
Inventor: Sung-Jin KIM , Hyunyi YI , Chulwoo LEE , Woomin HWANG , Byungjoon KIM
IPC: G06F21/53
Abstract: An apparatus and method for generating a system call whitelist for an application container. The method may include determining whether a container is based on machine code or non-machine code by analyzing the internal configuration of the running container, identifying system calls included in an application through binary static analysis or static analysis of source code selected depending on the determination of whether the container is based on machine code or non-machine code, and generating a whitelist based on the numbers of all of the identified system calls.
-
公开(公告)号:US20210382997A1
公开(公告)日:2021-12-09
申请号:US16991362
申请日:2020-08-12
Inventor: Hyunyi YI , Sung-Jin KIM , Chulwoo LEE , Woomin HWANG , Byungjoon KIM
IPC: G06F21/57
Abstract: A method and apparatus for providing security visibility into a container image. The method includes generating a software list by analyzing layers forming a container image, generating a vulnerability check result based on the software list, and generating a container image content report based on the software list and the vulnerability check result.
-
-
-
-
Search Results
5
records
(took 0.037 seconds)
