公开(公告)号：US11144644B2

公开(公告)日：2021-10-12

申请号：US15791786

申请日：2017-10-24

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Tae-Yeon Kim ,  Chan-Woo Bae ,  Hee-Min Kim ,  Hyeong-Min Seo ,  Jung-Hwa Han ,  Sung-Il Lee ,  Eung-Ki Park

IPC: G06F12/14 ,  G06F21/56 ,  G06F16/23 ,  G06F21/57 ,  G06F16/18 ,  G06F8/65

Abstract: An update management apparatus and an update verification apparatus and method of a control system. The update verification apparatus of the control system includes a file type classification unit for classifying one or more input update files into any one file type of a firmware file, a patch file, and another type of file; an integrity verification unit for verifying integrity of the update files based on the file types of the update files; and an update file generation unit for generating a final update file from the update files, the integrity of which has been verified.

公开(公告)号：US09692779B2

公开(公告)日：2017-06-27

申请号：US14779435

申请日：2013-10-21

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Young-Jae Maeng ,  Jong-Hu Lee ,  Hyun-Dong Park ,  Sang-Woo Park ,  Eung-Ki Park

IPC: G06F21/56 ,  H04L29/06 ,  G06F21/57 ,  G06F17/50

CPC classification number: H04L63/1433 ,  G06F17/5009 ,  G06F21/56 ,  G06F21/577 ,  H04L63/10

Abstract: A method and apparatus for quantifying the vulnerability of a system. The apparatus includes a vulnerability calculation unit, a target organization security level calculation unit, a network separation status calculation unit, an interim calculation unit, and a final score calculation unit. The vulnerability calculation unit converts each of the vulnerability identification results of the system into a vulnerability score. The target organization security level calculation unit calculates a target organization security level score based on a technology-field security level score and a management-field security level score. The network separation status calculation unit converts the status of the separation of the local network of the system into a network separation score. The interim calculation unit calculates an interim score. The final score calculation unit quantifies the vulnerability of the system by finally calculating a composite score using the interim score and a simulated intrusion success level.