Method and Apparatus for Identifying Vulnerability Information Using Keyword Analysis for Banner of Open Port
The present embodiments relate to a method for identifying vulnerability information through a keyword analysis for a banner of an open port and an apparatus thereof. The apparatus can process information of a banner of an open port of a computer system, analyze a CPE dictionary to generate a CPE tr...
Saved in:
| Main Authors | , , , , , , |
|---|---|
| Format | Patent |
| Language | English Korean |
| Published |
14.05.2018
|
| Subjects | |
| Online Access | Get full text |
Cover
Loading…
| Abstract | The present embodiments relate to a method for identifying vulnerability information through a keyword analysis for a banner of an open port and an apparatus thereof. The apparatus can process information of a banner of an open port of a computer system, analyze a CPE dictionary to generate a CPE tree, search the banner for keywords at each level of the CPE tree, and translate from the CPE tree into CPEs conforming to a format of a CPE dictionary. Therefore, the CPEs matching the most with information of an operating system or an application program of a specific computer system can be selected among various CPE candidates, and vulnerability information of a CPE type, which can be linked with CVE vulnerability information, can be quickly and easily identified.
본 실시예들은 컴퓨터 시스템의 오픈 포트 배너 정보를 가공하고, CPE 사전을 분석하여 CPE 트리를 생성하고, CPE 트리 각 레벨의 키워드들을 배너에서 검색하여, CPE 트리로부터 CPE 사전의 포맷을 준수하는 CPE들로 변환함으로써, 다양한 CPE 후보들 중에서 특정 컴퓨터 시스템의 운영체제 또는 응용프로그램의 정보와 가장 많이 매칭된 CPE들을 선정할 수 있으며, CVE 취약점 정보와 연동할 수 있는 CPE 형태의 취약점 정보를 신속 용이하게 식별할 수 있는 컴퓨터 시스템 정보 식별 방법 및 장치를 제공한다. |
|---|---|
| AbstractList | The present embodiments relate to a method for identifying vulnerability information through a keyword analysis for a banner of an open port and an apparatus thereof. The apparatus can process information of a banner of an open port of a computer system, analyze a CPE dictionary to generate a CPE tree, search the banner for keywords at each level of the CPE tree, and translate from the CPE tree into CPEs conforming to a format of a CPE dictionary. Therefore, the CPEs matching the most with information of an operating system or an application program of a specific computer system can be selected among various CPE candidates, and vulnerability information of a CPE type, which can be linked with CVE vulnerability information, can be quickly and easily identified.
본 실시예들은 컴퓨터 시스템의 오픈 포트 배너 정보를 가공하고, CPE 사전을 분석하여 CPE 트리를 생성하고, CPE 트리 각 레벨의 키워드들을 배너에서 검색하여, CPE 트리로부터 CPE 사전의 포맷을 준수하는 CPE들로 변환함으로써, 다양한 CPE 후보들 중에서 특정 컴퓨터 시스템의 운영체제 또는 응용프로그램의 정보와 가장 많이 매칭된 CPE들을 선정할 수 있으며, CVE 취약점 정보와 연동할 수 있는 CPE 형태의 취약점 정보를 신속 용이하게 식별할 수 있는 컴퓨터 시스템 정보 식별 방법 및 장치를 제공한다. |
| Author | JANG, DAE IL NA, SA RANG KIM, TAE EUN LEE, EUN BYUL KIM, HWAN KUK KO, EUN HYE JURN, JEE SOO |
| Author_xml | – fullname: KIM, TAE EUN – fullname: NA, SA RANG – fullname: JANG, DAE IL – fullname: JURN, JEE SOO – fullname: KIM, HWAN KUK – fullname: KO, EUN HYE – fullname: LEE, EUN BYUL |
| BookMark | eNqNjMsKwjAQRbvQha9_GHAtxErBbRXFUkQRdVtGO9FAOglJiuTvregHuLqLc88ZJj02TIOk2VN4mhqQa8itRYeh9SCNg6ImDkpGxQ-4tprJ4U1pFSIU3PEGgzIMF__hJcWXcV2BUUevvoEVcieBkXCwxHA0LoyTvkTtafLbUTLdbs7r3YysqchbvBNTqMpTKuZLITKRiixf_Pd6A8QPRGo |
| ContentType | Patent |
| DBID | EVB |
| DatabaseName | esp@cenet |
| DatabaseTitleList | |
| Database_xml | – sequence: 1 dbid: EVB name: esp@cenet url: http://worldwide.espacenet.com/singleLineSearch?locale=en_EP sourceTypes: Open Access Repository |
| DeliveryMethod | fulltext_linktorsrc |
| Discipline | Medicine Chemistry Sciences Physics |
| DocumentTitleAlternate | 오픈 포트 배너 키워드 분석을 통한 취약점 정보를 식별하는 방법 및 장치 |
| ExternalDocumentID | KR20180050205A |
| GroupedDBID | EVB |
| ID | FETCH-epo_espacenet_KR20180050205A3 |
| IEDL.DBID | EVB |
| IngestDate | Fri Jul 19 16:26:34 EDT 2024 |
| IsOpenAccess | true |
| IsPeerReviewed | false |
| IsScholarly | false |
| Language | English Korean |
| LinkModel | DirectLink |
| MergedId | FETCHMERGED-epo_espacenet_KR20180050205A3 |
| Notes | Application Number: KR20170116301 |
| OpenAccessLink | https://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20180514&DB=EPODOC&CC=KR&NR=20180050205A |
| ParticipantIDs | epo_espacenet_KR20180050205A |
| PublicationCentury | 2000 |
| PublicationDate | 20180514 |
| PublicationDateYYYYMMDD | 2018-05-14 |
| PublicationDate_xml | – month: 05 year: 2018 text: 20180514 day: 14 |
| PublicationDecade | 2010 |
| PublicationYear | 2018 |
| RelatedCompanies | KOREA INTERNET & SECURITY AGENCY |
| RelatedCompanies_xml | – name: KOREA INTERNET & SECURITY AGENCY |
| Score | 3.124362 |
| Snippet | The present embodiments relate to a method for identifying vulnerability information through a keyword analysis for a banner of an open port and an apparatus... |
| SourceID | epo |
| SourceType | Open Access Repository |
| SubjectTerms | CALCULATING COMPUTING COUNTING ELECTRIC DIGITAL DATA PROCESSING PHYSICS |
| Title | Method and Apparatus for Identifying Vulnerability Information Using Keyword Analysis for Banner of Open Port |
| URI | https://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20180514&DB=EPODOC&locale=&CC=KR&NR=20180050205A |
| hasFullText | 1 |
| inHoldings | 1 |
| isFullTextHit | |
| isPrint | |
| link | http://utb.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwfV1La8JAEB6sfd5a29KHLQstuYVGs5rkEEqTKNLgg2DFm-QJUptIEyn--86ssfXkMbswMBMmO5P9vm8AnptKbKhxG9-AxiOZG6EvG3oSykHEfV0Jk0Dzie_cH7R7H_x92ppWYLHlwgid0B8hjogZFWK-F-J7vfz_ieUIbGX-EsxxKXvtjk1HKrvjhk5y3pJjmZ3R0Bnakm2bricNvM2e0sLiqPV2AIdUSJPSfmdiES9luXuodM_haIT20uICKp9ZDU7t7ey1Gpz0yyvvGhwLjGaY42KZh_klfPXF4GfmpxHDOpLku1c5w_qTbYi3grzEJqsFaUoL-OualcQj8o0JoABz4zUGAi2UwiTCgOXTMC6WJYywJoyQplfw1O2M7Z6MHsz-AjZzvV131Wuoplka3wBTsD2iBgq7Fs4T3g54M-Ga4mNNZ6hqFN9CfZ-lu_3b93BGj3S33uB1qBbfq_gBj-wieBSR_gUGV5q7 |
| link.rule.ids | 230,309,786,891,25594,76903 |
| linkProvider | European Patent Office |
| linkToHtml | http://utb.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwfV1LT8JAEJ4gPvCmqPGBuommt8ZCF0oPxNgWgpYWQirh1vSZGLElto3h3zu7FOXEdSeZZKbZ3Znu930D8NiSIlWOOvgFFBqKVA08Ue3GgeiH1OtKQewrHuM7W3Zn-E7f5u15BRYbLgzXCf3h4oi4owLc7zk_r5f_P7EMjq3MnvwPXEqfB07PEMruuNllct6CofX6k7Ex1gVd75lTwZ6ubVIbi6P2yx7sK9gU8mZppjFeynL7UhmcwMEE_SX5KVQ-0zrU9M3stTocWeWTdx0OOUYzyHCx3IfZGXxZfPAz8ZKQYB3J5LuLjGD9SdbEW05eIrNiwTSlOfx1RUriEYuNcKAAMaMVJgI9lMIk3IHmsWFcJI0Jw5oQhjQ9h4dB39GHIkbg_iXMNafb4coXUE3SJLoEImF7xBoo7FoojWnHp62YKpKHNZ0qy2F0BY1dnq53m--hNnSskTt6tc0bOGYm9s7epA2o5t9FdIvXd-7f8az_AmgknaU |
| openUrl | ctx_ver=Z39.88-2004&ctx_enc=info%3Aofi%2Fenc%3AUTF-8&rfr_id=info%3Asid%2Fsummon.serialssolutions.com&rft_val_fmt=info%3Aofi%2Ffmt%3Akev%3Amtx%3Apatent&rft.title=Method+and+Apparatus+for+Identifying+Vulnerability+Information+Using+Keyword+Analysis+for+Banner+of+Open+Port&rft.inventor=KIM%2C+TAE+EUN&rft.inventor=NA%2C+SA+RANG&rft.inventor=JANG%2C+DAE+IL&rft.inventor=JURN%2C+JEE+SOO&rft.inventor=KIM%2C+HWAN+KUK&rft.inventor=KO%2C+EUN+HYE&rft.inventor=LEE%2C+EUN+BYUL&rft.date=2018-05-14&rft.externalDBID=A&rft.externalDocID=KR20180050205A |