公开(公告)号：US20140380458A1

公开(公告)日：2014-12-25

申请号：US14245310

申请日：2014-04-04

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Byoung-Koo KIM ,  Dong-Ho KANG ,  Seon-Gyoung SOHN ,  Young-Jun HEO ,  Jung-Chan NA

IPC: H04L29/06

CPC classification number: H04L63/0227 ,  H04L67/12

Abstract: Disclosed is an apparatus for preventing illegal access of industrial control system and a method thereof in accordance with the present invention. The apparatus for preventing illegal access of industrial control system includes: a first interface communicating a packet by interoperating with a management network group that requests a control command; a second interface communicating a packet by interoperating with a control network group that receives a control command from the management network group and processes it; and a control device, which, when a packet flows therein from the management network group or the control network group, checks whether or not at least one filter rule is set and controls the packet flow between the management network group and the control network group using the filter where the rule is set.

Abstract translation: 公开了一种用于防止工业控制系统的非法访问的装置及其根据本发明的方法。 用于防止工业控制系统的非法访问的装置包括：通过与请求控制命令的管理网络组互操作来传送分组的第一接口; 第二接口，通过与从所述管理网络组接收控制命令的控制网络组进行交互操作来传送分组，并对其进行处理; 以及控制装置，当分组在管理网络组或控制网络组中流动时，检查是否设置了至少一个过滤规则，并且使用以下来控制管理网络组和控制网络组之间的分组流 设置规则的过滤器。

公开(公告)号：US20160094517A1

公开(公告)日：2016-03-31

申请号：US14797562

申请日：2015-07-13

Applicant: Electronics and Telecommunications Research Institute

Inventor： Dong-Ho KANG ,  Byoung-Koo KIM ,  Jung-Chan NA ,  Hyun-Sook CHO

IPC: H04L29/06

CPC classification number: H04L63/0236 ,  H04L63/105 ,  H04L63/1425

Abstract: An apparatus and method for blocking abnormal communication are disclosed herein. The apparatus for blocking abnormal communication includes a packet collection unit, a packet analysis unit, and an access control unit. The packet collection unit collects a packet via a network device. The packet analysis unit generates a system rule, a communication flow rule, and a packet characteristic rule based on the packet from the packet collection unit. The access control unit determines whether to block the packet by determining whether the packet from the packet collection unit satisfies the system rule, the communication flow rule and the packet characteristic rule.

Abstract translation: 本文公开了一种用于阻止异常通信的装置和方法。 用于阻止异常通信的装置包括分组收集单元，分组分析单元和访问控制单元。 分组收集单元经由网络设备收集分组。 分组分析单元基于来自分组收集单元的分组生成系统规则，通信流规则和分组特征规则。 访问控制单元通过确定来自分组收集单元的分组是否满足系统规则，通信流规则和分组特征规则来确定是否阻止分组。

公开(公告)号：US20180109356A1

公开(公告)日：2018-04-19

申请号：US15641141

申请日：2017-07-03

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Byoung-Koo KIM ,  Seon-Gyoung SOHN ,  Boo-Sun JEON ,  Young-Jun HEO ,  Dong-Ho KANG ,  Jung-Chan NA ,  Byeong-Cheol CHOI ,  Jae-Hoon NAH ,  Seoung-Hyeon LEE

IPC: H04L1/00 ,  H04L12/24 ,  H04L12/26

CPC classification number: H04L1/0075 ,  G05B19/00 ,  H04L1/0041 ,  H04L1/0045 ,  H04L41/0806 ,  H04L41/0866 ,  H04L43/0835 ,  H04L63/0209 ,  H04L63/0281

Abstract: Disclosed herein are a one-way data transmission apparatus, a one-way data reception apparatus, and a one-way data transmission/reception method using the apparatuses. The one-way data transmission/reception method uses a one-way data transmission apparatus and a one-way data reception apparatus, and includes receiving data from a high-security zone through a one-way path, generating tag information of the data, sending a message in which the tag information is added to the data to the one-way data reception apparatus, receiving the message from the one-way data transmission apparatus, checking the tag information of the message, and transmitting the data to a low-security zone.