公开(公告)号：US20170149831A1

公开(公告)日：2017-05-25

申请号：US15066208

申请日：2016-03-10

Applicant: Electronics and Telecommunications Research Institute

Inventor： Sung-Ho KIM ,  Sung-Il LEE ,  Su-Chul LEE ,  Han-Jun YOON ,  Do-Hoon LEE

IPC: H04L29/06 ,  G06N7/00

CPC classification number: H04L63/20 ,  G06N7/005 ,  H04L63/1416

Abstract: Disclosed herein are an apparatus and method for verifying a detection rule. The apparatus for verifying a detection rule includes a grammar checking unit for checking for a grammatical error in a loaded detection rule, a false-positive rate calculation unit for calculating a false-positive rate of the loaded detection rule by applying a latent Dirichlet allocation algorithm to a signature used in the detection rule, and a similarity checking unit for checking similarity between the detection rule and an existing pre-stored detection rule.

公开(公告)号：US20180121651A1

公开(公告)日：2018-05-03

申请号：US15791786

申请日：2017-10-24

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Tae-Yeon KIM ,  Chan-Woo BAE ,  Hee-Min KIM ,  Hyeong-Min SEO ,  Jung-Hwa HAN ,  Sung-Il LEE ,  Eung-Ki PARK

IPC: G06F21/56 ,  G06F9/445 ,  G06F17/30

CPC classification number: G06F21/565 ,  G06F8/65 ,  G06F16/1873 ,  G06F16/2365 ,  G06F21/572 ,  G06F2221/033

Abstract: An update management apparatus and an update verification apparatus and method of a control system. The update verification apparatus of the control system includes a file type classification unit for classifying one or more input update files into any one file type of a firmware file, a patch file, and another type of file; an integrity verification unit for verifying integrity of the update files based on the file types of the update files; and an update file generation unit for generating a final update file from the update files, the integrity of which has been verified.

公开(公告)号：US20170149830A1

公开(公告)日：2017-05-25

申请号：US15065179

申请日：2016-03-09

Applicant: Electronics and Telecommunications Research Institute

Inventor： Sung-Ho KIM ,  Sung-Il LEE ,  Su-Chul LEE ,  Han-Jun YOON ,  Do-Hoon LEE

IPC: H04L29/06

CPC classification number: H04L63/20 ,  H04L63/1408 ,  H04L63/1416 ,  H04L63/1425

Abstract: Disclosed herein are an apparatus and method for automatically generating a detection rule. The apparatus automatically generating a detection rule includes an analysis unit for analyzing network traffic of an input malicious traffic file, a malicious signature extraction unit for extracting a malicious signature from the malicious traffic file, and a detection rule generation unit for generating a detection rule using both the extracted malicious signature and information about packets of the malicious traffic file.