Somansa Co., Ltd. Patent applications |
Patent application number | Title | Published |
20150127817 | NETWORK-BASED HIGH PERFORMANCE SAP MONITORING SYSTEM AND METHOD - Provided are a network-based high performance SAP monitoring system and method, including a hardware engine selecting packets to be updated from input packets by performing session-based filtering and pattern matching on the input packets, identifying to which application protocol belongs among dynamic information and action gateway (DIAG) protocol, remote function call (RFC) protocol, and hypertext transfer protocol (HTTP) protocol, and adding identification information of the identified application protocol to the packet to be uploaded and a software engine including a DIAG processor processing the DIAG protocol, RFC processor processing the RFC protocol, and HTTP processor processing the HTTP protocol, when receiving the packet added with the identification information from the hardware engine, referring SAP application protocol identification information, extracting data transmitted and received between servers of an SAP client and one of the DIAG processor, RFC processor, and HTTP processor, thereby sorting and processing the three types of SAP application protocol such as the DIAG protocol, RFC protocol, and HTTP protocol. | 05-07-2015 |
20140157426 | PERSONAL INFORMATION PROTECTION SYSTEM FOR PROVIDING SPECIALIZED FUNCTION FOR HOST TERMINAL BASED ON UNIX AND LINUX - Provided are an information protection apparatus and system. The information protection apparatus based on Windows, Unix, or Linux includes a first check unit, a second check unit, and a security measure unit. The first check unit checks whether there is a file including monitoring information among a plurality of check target files in a local storage area, according to a predetermined check policy. The second check unit checks whether there is a file including the monitoring information among the check target files in a sharing storage area of a file system that is shared in a network drive type in an NFS scheme. The security measure unit performs a security measure conforming to a predetermined security policy for the file including the monitoring information. | 06-05-2014 |
20140157352 | APPARATUS AND METHOD FOR ANALYZING AND MONITORING SERVICE ADVERTISING PROTOCOL APPLICATION TRAFFIC, AND INFORMATION PROTECTION SYSTEM USING THE SAME - Provided are a traffic analysis apparatus and method. The traffic analysis apparatus includes an analysis unit and a policy application unit. The analysis unit determines whether a network packet between at least one client and a server is a packet of a pre-registered SAP session, and, when the network packet is not the packet of the pre-registered SAP session, the analysis unit determines whether the network packet is a packet of a new SAP session. The policy application unit determines whether the network packet includes predetermined monitoring information when the network packet is the packet of the pre-registered SAP session or new SAP session and, when the network packet includes the monitoring information, the policy application unit performs a response action conforming to a predetermined security policy. | 06-05-2014 |
20140108755 | MOBILE DATA LOSS PREVENTION SYSTEM AND METHOD USING FILE SYSTEM VIRTUALIZATION - Disclosed are a mobile DLP system and method. The mobile DLP system includes a general storage that allows an access in a normal mode and a security mode, an encrypted virtual storage that disallows an access in the normal mode and allows an access in the security mode, a management program that designates the general storage as a write/read area in the normal mode and designates the general storage and the virtual storage as the write/read area in the security mode, a fuse that intercepts a file input/output of an application program including the management program to again set a file input/output path as the virtual storage according to a command of the management program in the security mode, and a VFS engine that performs a bridge function between the application program of an application layer and the fuse of a kernel layer. | 04-17-2014 |
20140101751 | HARDWARE ENGINE FOR HIGH-CAPACITY PACKET PROCESSING OF NETWORK BASED DATA LOSS PREVENTION APPLIANCE - Provided is a network-based data loss prevention (DLP) system. The network-based DLP system includes a FPGA engine including a pattern matcher and a MCP engine including a session list filter. The a pattern matcher hash-processes a payload of an input packet in units of a certain size, compares a pre-stored pattern and the hash-processed packet, checks a matching rule ID and an upload channel ID corresponding to the pre-stored pattern when there is a match therebetween, adds tagging information to a header of the input packet, and outputs the packet. The session list filter receives the packet with the tagging information added thereto, and performs pre-registered processing on the pre-registered session, or passes the received packet. The processor uploads, forwards, or drops the received packet in correspondence with the matching rule ID. | 04-10-2014 |
20140089496 | APPARATUS AND METHOD FOR MONITORING WEB APPLICATION TELECOMMUNICATION DATA BY USER - Provided are an apparatus and method for monitoring web application telecommunication data by user. An information identification apparatus includes a collector collecting web application telecommunication data transmitted and received between a web server and a web client; a storage storing an identification information profile about a method of extracting user identification information by web server; and an extractor selecting user login-related web application telecommunication data among the web application telecommunication data with reference to the identification information profile, extracting a [web server address, login session identification information, and user identification information] list from the selected web application telecommunication data, extracting at least one piece of information of the web server address and the login session identification information from the web application telecommunication data after the user login, and determining whether the extracted information is matched with at least one piece of information in the list. | 03-27-2014 |
20130166981 | APPARATUS AND SECURITY SYSTEM FOR DATA LOSS PREVENTION, AND OPERATING METHOD OF DATA LOSS PREVENTION APPARATUS - Disclosed are a DLP security system and an operating method thereof. An operating method of a data loss prevention (DLP) apparatus, comprising: converting, into packets, Ethernet signals received from a fail over device that are transmitted and received between an external network and internal network; analyzing the packets to classify the packets into first packets required to be precisely judged and second packets not required to be precisely judged; distributing and allocating a judgment job about the first packet to at least one in-line instance according to a predetermined reference; and allocating the judgment job distributed to the in-line instance in which a fail occurs to the in-line instance which is normally operated when it is verified whether there is an in-line instance which is normally operated in the case where the fail occurs in the at least one in-line instance. | 06-27-2013 |
20130163030 | METHOD, SYSTEM, AND TERMINAL FOR PRINTED MATTER SECURITY - Disclosed are a system and a method for printed matter security. A method for printed matter security according to an exemplary embodiment of the present invention includes: receiving policy information, information of a monitoring application program, and pattern information of personal information from a security server; inserting a printing interruption module in the monitoring application program when the monitoring application program corresponding to the information of the application program is executed; storing a content of a printing request by interrupting the printing request of the monitoring application program by the printing interruption module; verifying whether the personal information is included in the content of the printing request, using the pattern information; and performing an information protection function corresponding to the policy information when the personal information is included in the content of the printing request. | 06-27-2013 |
20090125506 | Method of Managing Messages In Archiving System For E-Discovery - Provided is a method for managing messages in an archiving system for E-Discovery. The method includes capturing a message by classifying the message using at least one of a port number, a packet content and a packet pattern at the time of messaging a message transmitted by all communication devices officially recognized in a company, storing the message at an on-line storage through an indexing and a compression after removing a duplicate content of the message for a large capacity retrieval, and backing up the data at a unalterable permanent recording media in accordance with a priority selectively designated according to the attribute. | 05-14-2009 |
20080235370 | Method and System for Controlling Network Traffic of P2P and Instant Messenger Softwares - A method and a system for controlling a network traffic of P2P and instant messenger softwares are disclosed. In accordance with the method and the system, both a header and a payload of a packet generated by an instant messenger software or a P2P software are monitored to terminate a session by transmitting a termination signal to a receiver and a transmitter when required, thereby blocking the exchange of the attached file and storing the content of the conversation. | 09-25-2008 |