Some content of this application is unavailable at the moment.
If this situation persist, please contact us atFeedback&Contact
1. (WO2018079867) RESTORATION METHOD USING NETWORK RESTORATION SYSTEM IN ADVANCED PERSISTENT THREAT ENVIRONMENT
Latest bibliographic data on file with the International Bureau    Submit observation

Pub. No.: WO/2018/079867 International Application No.: PCT/KR2016/012033
Publication Date: 03.05.2018 International Filing Date: 26.10.2016
IPC:
H04L 29/06 (2006.01) ,G06F 21/56 (2013.01) ,H04L 29/14 (2006.01)
H ELECTRICITY
04
ELECTRIC COMMUNICATION TECHNIQUE
L
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29
Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/-H04L27/136
02
Communication control; Communication processing
06
characterised by a protocol
G PHYSICS
06
COMPUTING; CALCULATING; COUNTING
F
ELECTRIC DIGITAL DATA PROCESSING
21
Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
50
Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
55
Detecting local intrusion or implementing counter-measures
56
Computer malware detection or handling, e.g. anti-virus arrangements
H ELECTRICITY
04
ELECTRIC COMMUNICATION TECHNIQUE
L
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29
Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/-H04L27/136
14
Counter-measures to a fault
Applicants:
주식회사 아이티스테이션 ITSTATION INC. [KR/KR]; 전라북도 전주시 덕진구 반룡로 109 109, Ballyong-ro, Deokjin-gu Jeonju-si Jeollabuk-do 54853, KR
Inventors:
소준영 SO, Junyoung; KR
전석기 JEON, Seokgi; KR
Agent:
정진석 JUNG, Jinsuk; KR
Priority Data:
10-2016-013807824.10.2016KR
10-2016-013807924.10.2016KR
Title (EN) RESTORATION METHOD USING NETWORK RESTORATION SYSTEM IN ADVANCED PERSISTENT THREAT ENVIRONMENT
(FR) PROCÉDÉ DE RESTAURATION UTILISANT UN SYSTÈME DE RESTAURATION DE RÉSEAU DANS UN ENVIRONNEMENT DE MENACE PERSISTANTE AVANCÉE
(KO) 지능형 지속위협 환경의 네트워크 복구 시스템을 이용한 복구 방법
Abstract:
(EN) The present invention relates to a restoration method using a network restoration system in an advanced persistent threat environment, wherein, when a user terminal or a manager terminal monitors and detects an abnormal action such as a hacking attempt or installation of an abnormal program including spyware, in order to restore a system file of the relevant terminal, the network restoration system in an advanced persistent threat environment according to the present invention can restore a system to a predetermined target restoration time or a target data restoration point in time by restoring the system file, using one restoration mode among restoration mode 1 for restoration to a predetermined check point, restoration mode 2 for restoration to the original image of the system file, and restoration mode 3 for updating a patch program related to the system file before shutdown of Windows, so as to reduce a maximum tolerable period of disruption.
(FR) La présente invention concerne un procédé de restauration utilisant un système de restauration de réseau dans un environnement de menace persistante avancée. Lorsqu'un terminal d'utilisateur ou un terminal de gestionnaire surveille et détecte une action anormale telle qu'une tentative de piratage ou l'installation d'un programme anormal comprenant des logiciels espions, afin de restaurer un fichier système du terminal approprié, le système de restauration de réseau dans un environnement de menace persistante avancée selon la présente invention peut restaurer un système à un temps de restauration cible prédéfini ou à un point de restauration de données cible dans le temps par restauration du fichier système au moyen d'un mode de restauration parmi le mode de restauration 1 permettant la restauration à un point de contrôle prédéfini, le mode de restauration 2 permettant la restauration à l'image d'origine du fichier système et le mode de restauration 3 permettant la mise à jour d'une retouche associée au fichier système avant l'arrêt de Windows, de façon à réduire une période maximale tolérable de perturbation.
(KO) 본 발명은 지능형 지속위협 환경의 네트워크 복구 시스템을 이용한 복구 방법에 관한 것으로, 본 발명에 따른 지능형 지속위협 환경의 네트워크 복구 시스템은 사용자 단말 또는 관리자 단말에서 스파이웨어를 포함하는 비정상 프로그램 설치 또는 해킹 시도를 포함하는 비정상 행위가 모니터링 되면, 해당 단말의 시스템 파일 복구를 위하여, 미리 설정된 체크 포인트로 복구하는 복구 모드 1, 시스템 파일의 원본 이미지로 복구하는 복구 모드 2 및 윈도우 종료 이전에 시스템 파일과 관련된 패치프로그램을 업데이트하는 복구 모드 3 중 어느 하나의 복구 모드로 시스템 파일을 복원하여 설정된 목표복구시간 또는 데이터 목표복구시점으로 시스템을 복구하여 최대 중단 허용 시간(Maximum Tolerable Period of Disruption)을 줄일 수는 지능형 지속위협 환경의 네트워크 복구 시스템을 이용한 복구 방법에 관한 것이다.
front page image
Designated States: AE, AG, AL, AM, AO, AT, AU, AZ, BA, BB, BG, BH, BN, BR, BW, BY, BZ, CA, CH, CL, CN, CO, CR, CU, CZ, DE, DJ, DK, DM, DO, DZ, EC, EE, EG, ES, FI, GB, GD, GE, GH, GM, GT, HN, HR, HU, ID, IL, IN, IR, IS, JP, KE, KG, KN, KP, KW, KZ, LA, LC, LK, LR, LS, LU, LY, MA, MD, ME, MG, MK, MN, MW, MX, MY, MZ, NA, NG, NI, NO, NZ, OM, PA, PE, PG, PH, PL, PT, QA, RO, RS, RU, RW, SA, SC, SD, SE, SG, SK, SL, SM, ST, SV, SY, TH, TJ, TM, TN, TR, TT, TZ, UA, UG, US, UZ, VC, VN, ZA, ZM, ZW
African Regional Intellectual Property Organization (ARIPO) (BW, GH, GM, KE, LR, LS, MW, MZ, NA, RW, SD, SL, ST, SZ, TZ, UG, ZM, ZW)
Eurasian Patent Office (AM, AZ, BY, KG, KZ, RU, TJ, TM)
European Patent Office (EPO) (AL, AT, BE, BG, CH, CY, CZ, DE, DK, EE, ES, FI, FR, GB, GR, HR, HU, IE, IS, IT, LT, LU, LV, MC, MK, MT, NL, NO, PL, PT, RO, RS, SE, SI, SK, SM, TR)
African Intellectual Property Organization (BF, BJ, CF, CG, CI, CM, GA, GN, GQ, GW, KM, ML, MR, NE, SN, TD, TG)
Publication Language: Korean (KO)
Filing Language: Korean (KO)