公开(公告)号：US20140366142A1

公开(公告)日：2014-12-11

申请号：US14264174

申请日：2014-04-29

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Yuseok JEON ,  Incheol SHIN ,  Jaeduck CHOI ,  Gunhee LEE ,  Sinkyu KIM ,  Jungtaek SEO

IPC: H04L29/06 ,  H04W12/10

CPC classification number: H04L63/1433 ,  H04W12/10 ,  H04W12/12 ,  H04W84/18

Abstract: The present invention relates to an apparatus and method for analyzing vulnerability of a Zigbee network. For this, the apparatus for analyzing vulnerability of a Zigbee network present invention includes an allocation supporting unit for analyzing an environment of a Zigbee network and allocating a plurality of analyzers to multiple channels of the Zigbee network. A public vulnerability inspection unit inspects the Zigbee network for predefined public vulnerability via the plurality of analyzers. A new vulnerability analysis unit analyzes new vulnerability of the Zigbee network via the plurality of analyzers.

Abstract translation: 本发明涉及一种用于分析ZigBee网络的脆弱性的装置和方法。 为此，用于分析ZigBee网络的脆弱性的装置本发明包括：分配支持单元，用于分析ZigBee网络的环境并将多个分析器分配给Zigbee网络的多个信道。 公众漏洞检查单元通过多个分析器检查Zigbee网络预定义的公共漏洞。 一个新的漏洞分析单元通过多个分析器分析ZigBee网络的新漏洞。

公开(公告)号：US20160269368A1

公开(公告)日：2016-09-15

申请号：US14794963

申请日：2015-07-09

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Jaeduck CHOI ,  Gunhee LEE ,  Sinkyu KIM

IPC: H04L29/06

CPC classification number: H04L63/0428 ,  H04L63/08 ,  H04L63/166 ,  H04L63/168

Abstract: In a method of selectively applying a data encryption function, a CoAP client and a CoAP server perform a DTLS handshake process. The CoAP client generates a CoAP message when the DTLS handshake process has been completed, and then indicates that encryption does not need to be applied to the CoAP message. The CoAP client generates only the authentication value of the CoAP message via a DTLS record layer protocol. The CoAP client sets the value of the specific field of a DTLS record layer protocol header to a specific value via the DTLS record layer protocol. The CoAP client sends the CoAP message and the authentication value to the CoAP server.

Abstract translation: 在选择性地应用数据加密功能的方法中，CoAP客户端和CoAP服务器执行DTLS握手处理。 当DTLS握手处理完成后，CoAP客户端生成CoAP消息，然后指示加密不需要应用于CoAP消息。 CoAP客户端仅通过DTLS记录层协议生成CoAP消息的认证值。 CoAP客户端通过DTLS记录层协议将DTLS记录层协议头的特定字段的值设置为特定值。 CoAP客户端将CoAP消息和认证值发送到CoAP服务器。