KR20170042143A - KVM Security System of Semiconductor Manufacturing Equipment - Google Patents
KVM Security System of Semiconductor Manufacturing Equipment Download PDFInfo
- Publication number
- KR20170042143A KR20170042143A KR1020150141720A KR20150141720A KR20170042143A KR 20170042143 A KR20170042143 A KR 20170042143A KR 1020150141720 A KR1020150141720 A KR 1020150141720A KR 20150141720 A KR20150141720 A KR 20150141720A KR 20170042143 A KR20170042143 A KR 20170042143A
- Authority
- KR
- South Korea
- Prior art keywords
- kvm
- remote terminal
- security
- semiconductor manufacturing
- manufacturing equipment
- Prior art date
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/28—Restricting access to network management systems or functions, e.g. using authorisation function to access network configuration
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/02—Details
- H04L12/12—Arrangements for remote connection or disconnection of substations or of equipment thereof
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/02—Details
- H04L12/22—Arrangements for preventing the taking of data from a data transmission channel without authorisation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer And Data Communications (AREA)
Abstract
Description
BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a KVM security system for remote control of semiconductor manufacturing equipment, and more particularly, to a KVM security system for controlling connection of a remote terminal apparatus, storing connection history of a remote terminal apparatus, .
An input / output sharing device is a device that can control a plurality of computers by sharing a keyboard, a video device, and a mouse, which are input / output devices, .
Since the KVM device can control an input / output device connected to a plurality of computers from an external remote terminal device, it is possible to efficiently manage a server. By connecting a KVM device to a semiconductor manufacturing device and constructing a KVM system, Control and monitoring.
As described above, the KVM system for remotely controlling the semiconductor manufacturing equipment is advantageous in terms of management efficiency, but contrary to this, there may be a security problem due to the approach of the external manager.
Therefore, there is a need to introduce a KVM security system for semiconductor manufacturing equipment which improves problems such as management of external administrator access and leakage of security issues.
In order to solve such a problem, Korean Patent Registration No. 10-1077652 (registered on October 21, 2011) discloses a remote network management system that issues an approval code to track responsibility for an internal security incident, And a method of authenticating the remote network management system.
However, only the configuration of the connection authentication method of the remote terminal is disclosed, and the configuration for security management after the remote terminal is connected is not disclosed, which may be vulnerable to security.
The present invention provides a KVM security system that is developed to solve the above-mentioned problems and which controls connection of a remote terminal apparatus, stores a connection history when a remote terminal apparatus is connected, and sets a video security zone to enhance security .
For this purpose, the KVM security system of the semiconductor manufacturing equipment according to the present invention comprises a monitoring device for controlling the operation of the semiconductor manufacturing equipment and displaying the status, a KVM device for outputting a masked image by receiving security setting from the monitoring device, A KVM management device connected to the KVM device and controlling connection to the KVM device, and a remote terminal device connected to the KVM management device and remotely controlling the monitoring device.
According to another aspect of the present invention, there is provided a security method for a KVM system, including a setting step of setting a screen security zone in a monitoring device by a user, an authentication step of authenticating connection of a remote terminal device by a KVM management device, An output step of outputting a masked image by masking a screen security area in the KVM management device; a storage step of storing the connection history of the remote terminal device by the KVM management device; And a scrap step of scrapping.
According to the KVM security system of the semiconductor manufacturing equipment according to the present invention, when a KVM system is actually introduced to a semiconductor manufacturing company, a KVM device can be connected to a computer of an automation process to remotely manage the KVM system from outside the factory. And it is also advantageous that the computer personnel do not have to observe the regulations of the semiconductor manufacturing factory, such as wearing a tricky dress.
In addition, it has an authentication procedure for remote administrator access, a function to store the connection history of the remote administrator, and an automatic release function in which the remote administrator authentication is released after a certain time, .
In addition, it is possible to provide a KVM system with enhanced security by including a shutdown function for blocking video images by preventing security issues from being made by setting security on a video image output to the remote terminal device.
1 is a schematic block diagram of a KVM security system of a semiconductor manufacturing equipment according to the present invention;
2 is a block diagram of a monitoring device according to the present invention;
3 is a block diagram illustrating a KVM device according to the present invention.
4 is a block diagram showing a KVM management apparatus according to the present invention.
5 is a signal flow diagram of a KVM security system for semiconductor manufacturing equipment in accordance with an embodiment of the present invention.
Hereinafter, embodiments of the present invention will be described in detail with reference to the accompanying drawings. The configuration of the present invention and the operation and effect thereof will be clearly understood through the following detailed description.
Before describing the invention in detail, the same components are denoted by the same reference numerals even if they are shown in different drawings, and a detailed description thereof will be omitted when it is judged that the gist of the present invention may be blurred to a known configuration .
Hereinafter, a KVM security system for semiconductor manufacturing equipment according to the present invention will be described with reference to the accompanying drawings.
1 is a schematic block diagram of a KVM security system of a
1, a KVM security system of a
The
The
The
The
Although the
The
The
In addition, the
The
The
The
2 is a block diagram illustrating a
2, a
The
The
The
The
The
The
The
3 is a block diagram illustrating a
3, the
The input /
The
In the masking process, a method of blurring or mosaicing a corresponding security area is used. Such a masking process is a part where the gist of the present invention may be blurred, and a detailed description thereof will be omitted.
The masking image processed in the
The
First, the security image transmitted from the
The data of the input device transmitted from the remote
4 is a block diagram showing a
4, the
The
The
The
The administrator authentication procedure may be a method of inputting an administrator ID and a password through an authentication program or a method of giving an authentication code through a separate authentication server.
The remote
Accordingly, it is possible not only to control the operation of the
The
The
The
It is preferable that the system user sets a predetermined time for performing the automatic authentication release function. In addition, it is also possible for the administrator to directly set a certain time, and input of a mouse, keyboard, Based on the point in time when they did not.
In addition, the
It is preferable that the shutdown function operates the user directly in case the security of the system becomes weak due to a remote hacking or a server connection failure.
Such an automatic release function and shutdown function are effective in preventing a security threat or a leakage of confidential information caused by remote control, and can further enhance the KVM security system of the semiconductor process equipment of the present invention.
5 is a signal flow diagram of the KVM security method of the
A KVM security process of the
Next, when the administrator accesses the
When authentication of the remote
While the remote
The above-described storing process is continuously performed while the remote
The foregoing description is merely illustrative of the present invention, and various modifications may be made by those skilled in the art without departing from the spirit of the present invention.
Therefore, the embodiments disclosed in the specification of the present invention do not limit the present invention. The scope of the present invention should be construed according to the following claims, and all the techniques within the scope of equivalents should be construed as being included in the scope of the present invention.
10: Semiconductor manufacturing equipment
100: monitoring device 102: graphics processing device
104: Monitor 106: Mouse
108: keyboard 110:
200: KVM unit 202: Image processing unit
204 input /
300: KVM management device 302:
304: control unit 306:
308: Black box part 310: Memory
400: communication network 500: remote terminal device
Claims (6)
A monitoring device for controlling operation of the semiconductor manufacturing equipment and displaying status,
A KVM device for receiving a security setting from the monitoring device and outputting a masked image,
A KVM management device connected to the KVM device and controlling connection to the KVM device;
And a remote terminal device connected to the KVM management device and remotely controlling the monitoring device.
And a video processor for performing a masking process on the security image input from the monitoring device and outputting the masked image to the remote terminal device.
A communication unit for connecting the KVM apparatus and the remote terminal apparatus;
An authentication unit for performing an administrator authentication procedure to remotely control the monitoring apparatus through the remote terminal apparatus;
A control unit for recording a connection time and an end time of the remote terminal apparatus;
A black box unit for scrolling a connection screen of the remote terminal apparatus,
And a memory for storing data generated in the control unit and the black box unit.
When the remote terminal device is not connected to the terminal device for a predetermined time after the remote terminal device is connected, the authentication is canceled.
And performs a shutdown function for simultaneously blocking images output from the KVM device in an emergency.
An authentication step of the KVM management apparatus authenticating connection of the remote terminal apparatus,
An output step of causing the KVM device to mask the screen security area to output the masked image to the remote terminal device;
A storage step of the KVM management apparatus storing a connection history of the remote terminal apparatus;
And scavenging the connection screen of the remote terminal device by the KVM management device.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020150141720A KR20170042143A (en) | 2015-10-08 | 2015-10-08 | KVM Security System of Semiconductor Manufacturing Equipment |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020150141720A KR20170042143A (en) | 2015-10-08 | 2015-10-08 | KVM Security System of Semiconductor Manufacturing Equipment |
Publications (1)
Publication Number | Publication Date |
---|---|
KR20170042143A true KR20170042143A (en) | 2017-04-18 |
Family
ID=58704106
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
KR1020150141720A KR20170042143A (en) | 2015-10-08 | 2015-10-08 | KVM Security System of Semiconductor Manufacturing Equipment |
Country Status (1)
Country | Link |
---|---|
KR (1) | KR20170042143A (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN112075066A (en) * | 2018-05-04 | 2020-12-11 | 斯坦费尔德有限公司 | Remote support device |
-
2015
- 2015-10-08 KR KR1020150141720A patent/KR20170042143A/en unknown
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN112075066A (en) * | 2018-05-04 | 2020-12-11 | 斯坦费尔德有限公司 | Remote support device |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
WO2016137307A1 (en) | Attestation by proxy | |
RU2635224C2 (en) | Method and device for secure sensory input | |
KR101489152B1 (en) | Apparatus and method for preventing screen capture | |
CN104040510A (en) | Secure direct memory access | |
US11461436B1 (en) | Trust zone hosted secure screen mode for discretionary presentation of sensitive corporate information to trusted endpoints | |
KR101839647B1 (en) | Per process networking capabilities | |
US11943256B2 (en) | Link detection method and apparatus, electronic device, and storage medium | |
WO2020050584A1 (en) | System and method for secure transactions with a trusted execution environment (tee) | |
CN107873125A (en) | Active/standby devices scramble is shown | |
US20130061316A1 (en) | Capability Access Management for Processes | |
CN113569288A (en) | Authority management method and device and electronic equipment | |
CN109154903B (en) | Recovery environment for virtual machines | |
WO2022124572A1 (en) | System and method for dynamic verification of trusted applications | |
KR20170042143A (en) | KVM Security System of Semiconductor Manufacturing Equipment | |
EP3519931A1 (en) | Electronic device and method for creating shortcut to web page in electronic device | |
EP2825992B1 (en) | Method and apparatus for controlling content capture of prohibited content | |
CN113821841B (en) | Resource management method, computing device and readable storage medium | |
JP2006259942A (en) | Security management system, server device, client terminal and security protection method used therefor | |
WO2016200007A1 (en) | Secure chat method using distributed key exchange protocol and self-defense security technology | |
US11245694B2 (en) | User terminal apparatus and control method thereof | |
US10635840B2 (en) | Banner notification in locked host monitor | |
JP7283232B2 (en) | Information provision method and information provision system | |
WO2020256277A1 (en) | System and method for universal mobile device lock using blockchain | |
KR20140076765A (en) | Method for authenticating user by using secure keypad based on image | |
WO2020105854A1 (en) | Electronic device and control method therefor |