| AHNLAB., Inc. Patent applications |
| Patent application number | Title | Published |
|---|
| 20120124666 | METHOD FOR DETECTING AND PREVENTING A DDOS ATTACK USING CLOUD COMPUTING, AND SERVER - A method for detecting and preventing a Distributed Denial of Service (DDoS) attack in a cloud computing environment including a plurality of clients connected to a server, the method includes collecting, by the server, file deoxyribonucleic acid (DNA) extracted from a file currently being executed by each of the clients and traffic information about network traffic caused by the file, from each client by using an agent that is installed in the client and that monitors the file currently being executed by the client. Further, the method includes analyzing, by the server, a risk level of a DDoS attack based on whether the file DNA of the file is malicious or unidentified and based on the traffic information. Furthermore, the method includes sending a command related to whether to block the file to the client according to the analyzed risk level. | 05-17-2012 |
| 20120110657 | APPARATUS AND METHOD FOR HOST-BASED NETWORK SEPARATION - The invention relates to an apparatus for host-based network separation, comprising: a network separation switch which, when a process is being executed on a host computer, checks whether the network allocated to the process is an internal network or an external network in accordance with the network access authority allocated to the process, and separates the process by IPs allocated to each network; and a packet processor which blocks the access of packet data when the packet data of the process separated by IPs by the network separation switch access a network other than the network to which the relevant IP is allocated. | 05-03-2012 |
| 20110296526 | APPARATUS AND METHOD FOR PREEMPTIVELY PROTECTING AGAINST MALICIOUS CODE BY SELECTIVE VIRTUALIZATION - An apparatus for preemptively protecting against malicious code by selective virtualization comprises: a compulsory resource storage unit which selects and stores compulsory resources required for executing a vulnerable program having an interface with an external source in a separated space; a modified resource-generating unit which generates a new resource by modifying the content of a resource accessed by the vulnerable program in the event the vulnerable program accesses a resource other than said compulsory resources; and a resource control unit which performs an operating system-level virtualization when the vulnerable program accesses the compulsory resource, and permits the vulnerable program to access the modified resource when the vulnerable program accesses a resource other than the compulsory resource. | 12-01-2011 |
| 20110161364 | SYSTEM AND METHOD FOR PROVIDING A NORMAL FILE DATABASE - The present invention relates to a system for providing a normal file database, including a database server in which a normal file database constructed for different operating systems is stored, and a file providing server for searching a normal file database corresponding to operating system information on the basis of the operating system information of a terminal installed with an antivirus program through the database server, and providing the searched normal file database to a terminal through a communication network. As described above, the present invention creates a normal file database in a state where no intrusion by external sources such as viruses or malicious code has occurred, and provides the created database to a terminal through a communication network, thus improving the reliability of the normal file database. | 06-30-2011 |
| 20110047305 | APPARATUS AND METHOD FOR SECURING DATA OF USB DEVICES - Security for a USB device is conducted in a protection mode for USB data by hooking an import table of a USB bus class driver, identifying a target IRP, into which the USB data to be protected is inputted, during the hooking routine, and intercepting a real USB data from the IRP. Therefore, input/output data of every USB devices, including a USB keyboard, can be protected in a USB bus class driver level to which a USB input/output request packet is transferred for the first time, thereby protecting the input/output data of the USB devices more safely and basically. | 02-24-2011 |
