CN103488949A - Electronic document security system - Google Patents

Electronic document security system Download PDF

Info

Publication number
CN103488949A
CN103488949A CN201310423305.9A CN201310423305A CN103488949A CN 103488949 A CN103488949 A CN 103488949A CN 201310423305 A CN201310423305 A CN 201310423305A CN 103488949 A CN103488949 A CN 103488949A
Authority
CN
China
Prior art keywords
module
plug
protection
interface
document
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201310423305.9A
Other languages
Chinese (zh)
Other versions
CN103488949B (en
Inventor
张伟平
黄祖泉
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shanghai Yidian Wulian Technology Co., Ltd.
Original Assignee
SHANGHAI YIDONG NETWORK INFORMATION CO Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by SHANGHAI YIDONG NETWORK INFORMATION CO Ltd filed Critical SHANGHAI YIDONG NETWORK INFORMATION CO Ltd
Priority to CN201310423305.9A priority Critical patent/CN103488949B/en
Publication of CN103488949A publication Critical patent/CN103488949A/en
Application granted granted Critical
Publication of CN103488949B publication Critical patent/CN103488949B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/604Tools and structures for managing or administering access control systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/64Protecting data integrity, e.g. using checksums, certificates or signatures

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • General Health & Medical Sciences (AREA)
  • Computer Hardware Design (AREA)
  • Bioethics (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Health & Medical Sciences (AREA)
  • Automation & Control Theory (AREA)
  • Storage Device Security (AREA)
  • Document Processing Apparatus (AREA)

Abstract

The invention discloses an electronic document security system which is externally connected with a document management system. The electronic document security system comprises an SDK (software development kit) interface, a daemon process module, an editor, an editor plug-in, a system plug-in, a plug-in management module, a user state security service library, a file filter drive, a process security drive, a network filter drive and a kernel mode security service library. Information leakage caused by intentional or unintentional leaks of electronic documents is avoided effectively, so that the electronic documents are completely protected within the whole life cycle, integrity, confidentiality and undeniability of the electronic documents are guaranteed, and security of the electronic documents and development of the entire information industry are promoted. Meanwhile, a security domain protection system is established in the long run so as to meet requirements of national informatization security.

Description

A kind of electronic document safety system
Technical field
The present invention relates to a kind of electronic document safety system.
Background technology
Development along with computing machine and the communication technology, initial stage be take the network intrusions that mischief, Display control computer ability are purpose, be transformed into and directly take the information stealing behavior that harm commercial interest or national security be purpose, under the ordering about of this purpose, the intrusion target network, the security incident of obtaining the confidential document data message has accounted for 80% more than of all security incidents.Simultaneously, because the internal staff is maliciously leaked classified papers, the information of the divulging a secret proportion caused is rising year by year.
The classified papers that relate to enterprise, decision-making common and enterprise is even survived close contacting is arranged, as product design drawing, product development related data, patent and engineering project, market development plan etc., the leakage of these files gently causes enterprise profit to glide, prestige is impaired, and serious meeting causes business failure.Equally, relate to national classified papers, entail dangers to arrives even nation's security of national interests.
Therefore, information security technology becomes more and more important, and needs a kind of technology to prevent that the disabled user from obtaining confidential information, anti-interior and anti-outer laying equal stress on.
Summary of the invention
The object of the present invention is to provide a kind of electronic document safety system, effectively prevented the leakage of information that active is leaked, passive leakage causes because of electronic document, guarantee integrality, confidentiality, the non repudiation of electronic document; Make electronic document obtain complete protection in whole life cycle.
The technical scheme that realizes above-mentioned purpose is:
A kind of electronic document safety system; external document file management system; described electronic document safety system comprises SDK interface, finger daemon module, editing machine, editing machine plug-in unit, system plugin, plug-in management module, user's state security service library, filter Driver on FSD, Process Protection driving, networks filter driver and kernel state security service library, wherein:
The SDK interface, connect described document file management system, finger daemon module and user's state security service library, for transmitting document data;
Editing machine, for the editor of document;
The plug-in management module, connect described finger daemon module, editing machine plug-in unit and system plugin, for accepting calling of described finger daemon module, described editing machine plug-in unit and system plugin inserted in described editing machine;
The editing machine plug-in unit, connect described editing machine, for intercepting and capturing the operation of described editing machine for document;
System plugin, for completing the interception action of Windows API;
User's state security service library, connect respectively described editing machine plug-in unit, system plugin, plug-in management module, finger daemon module, filter Driver on FSD, Process Protection driving and networks filter driver, for the kernel module interface being provided and encrypting middleware interface;
The finger daemon module, connect described system plugin, for the control to described system plugin, and receive the operation for document of editing machine that described editing machine plug-in unit intercepts and captures, after analyzing and processing, by described user's state security service library, notify described filter Driver on FSD, Process Protection driving and networks filter driver to be moved;
Filter Driver on FSD, connect described user's state security service library and kernel state security service library, for receiving the notice of described finger daemon module, document carried out to transparent encryption and decryption;
Process Protection drives, connect described user's state security service library and kernel state security service library, for receiving the notice of described finger daemon module, process to opening document is protected, simultaneously mutual by described encryption middleware interface and cryptosystem device, document is encrypted, deciphers, signs and verifies;
Networks filter driver, connect described user's state security service library and kernel state security service library, for receiving the notice of described finger daemon module, the process of opening document carried out to network protection;
The kernel state security service library, for filter Driver on FSD, Process Protection drive, networks filter driver provides scope check, process resource is followed the tracks of and the system integrity inspection.
Above-mentioned electronic document safety system; wherein, described system plugin comprises the Clipboard(clipbook) protection module, COM(COM assembly) protection module, Data Copy(data copy) protection module, the exchange of DDE(dynamic data) protection module, File Mapping(File Mapping) protection module, MailSlots(mailslot) protection module, Pipes(pipeline) protection module, RPC(remote procedure call) protection module, Widows Sockets (windows socket) protection module.
Above-mentioned electronic document safety system, wherein, described plug-in management module comprises plug-in management module interface, Hook function and plug-in unit access; The plug-in management module interface comprises that plugin card installation, plug-in unit load and the Hook operation; Plugin card installation, plug-in unit load, the Hook operation is operated according to plug-in card configuration, and the plug-in unit access connects Hook function and Hook operation, and the access plug-in unit is responsible in the plug-in unit access.
Above-mentioned electronic document safety system; wherein; described finger daemon module comprises application communication thread, kernel communication thread, communication request processing unit, configuration management, user's state Filter management module, kernel module interface and middleware access interface; described communication request processing unit connects respectively described application communication thread, kernel communication thread, configuration management, user's state Filter management module and kernel module interface, and described configuration management connects kernel module interface and middleware access interface.
Above-mentioned electronic document safety system; wherein; described SDK interface comprises auxiliary function, callback interface, installation and initialization and encryption and decryption; callback interface is comprised of KcgSetCallback and KcgCallBackFunction; installation and initialization are comprised of KcgOpen and KcgClose, and the parameter of KcgCallBackFunction is comprised of KCBE_ShellOpen, KCBE_CreateDocument, KCBE_OpenDocument and KCBE_CloseDocument.
Above-mentioned electronic document safety system, wherein, described Process Protection drives and comprises striding course internal memory fetch protection, dynamic base injection protection, the protection of malice hook, GDI object protection and show conservation of resources.
Above-mentioned electronic document safety system, wherein, described filter Driver on FSD is used filter Driver on FSD to realize the transparent encryption technology.
The invention has the beneficial effects as follows: the present invention is by using kernel level to filter, application layer plug-in unit and the plug-in unit based on editing machine are realized the safeguard protection of electronic document, make the document opened no matter in internal memory, in disk, all guaranteed integrality in transmission, authenticity, reliability, cut off the path that active leakage and the passive attack of document are leaked, make electronic document obtain complete protection in whole life cycle, guaranteed the integrality of electronic document, confidentiality, non repudiation, promote the development of electronic document safety and whole information industry, in the long run build security domain protection system, to adapt to the demand of national information safety simultaneously.
The accompanying drawing explanation
Fig. 1 is the structural representation of electronic document safety system of the present invention;
Fig. 2 is fundamental diagram of the present invention;
Fig. 3 is application example figure of the present invention.
Embodiment
Below in conjunction with accompanying drawing, the invention will be further described.
Refer to Fig. 1, by standard interface, document file management system 100 is joined with the present invention, the user carries out authorization identifying and authentication in document file management system 100, thereby enters system of the present invention; Electronic document safety system of the present invention comprises SDK(SoftwareDevelopmentKit) interface 1, finger daemon module 2, editing machine 3, editing machine plug-in unit 4, system plugin 5, plug-in management module 6, user's state security service library 7, filter Driver on FSD 8, Process Protection drive 9, networks filter driver 10 and kernel state security service library 11, wherein:
SDK interface 1 connects document file management system 100, finger daemon module 2 and user's state security service library 7, and SDK interface 1 is for transmitting document data, and provides DLL (dynamic link library) for application program and installation procedure; Open a document as the user in document file management system 100, by SDK interface 1, data are passed to system of the present invention;
Editing machine 3, for opening document, is edited document; For example: Word, Excel etc.;
Plug-in management module 6 connects finger daemon module 2, editing machine plug-in unit 4 and system plugin 5, the present invention takes over document protection work by finger daemon module 2, finger daemon module 2 is called plug-in management module 6, and plug-in management module 6 is responsible for editing machine plug-in unit 4 and system plugin 5 are inserted in the editing machine 3 of opening document;
Editing machine plug-in unit 4 Connection Editors 3, for intercept and capture editing machine 3 for document such as opening, newly-built, each generic operation such as save as, preserve, print, close; Editing machine plug-in unit 4 for example, for there being the plug-in unit of program editor definition: Office Addin;
System plugin 5 is for completing Windows API(windows application programming interfaces) interception action, realize process IPC(Inter-Process Communication) protection;
User's state security service library 7 is Connection Editor plug-in unit 4, system plugin 5, plug-in management module 6, finger daemon module 2, filter Driver on FSD 8, Process Protection driving 9 and networks filter driver 10 respectively, for kernel module interface (that is: kernel module is at the interface of user's state) being provided and encrypting middleware interface; Editing machine plug-in unit 4, system plugin 5, plug-in management module 6 and finger daemon module 2 are contacted by user's state security service library 7 and filter Driver on FSD 8, Process Protection driving 9 and networks filter driver 10;
Finger daemon module 2 connected system plug-in units 5, system plugin 5 is controlled, and the editing machine 3 transmitted via standard interface of reception editing machine plug-in unit 4 intercepting and capturing is for the operation of document, after analyzing and processing, by user's state security service library 7 circular document filtration drive 8, Process Protection driving 9 and networks filter driver 10, moved; Finger daemon module 2 also for log collection and upload, injection, windows messaging intercepting and capturing, strategy and the token of dynamic base be synchronous;
Filter Driver on FSD 8 connects user's state security service library 7 and kernel state security service library 11, after receiving the notice of finger daemon module 2, document is carried out to transparent encryption and decryption; Filter Driver on FSD 8 is used filter Driver on FSD to realize the transparent encryption technology, at the read-write operation that drives layer interception file, by giving file appended document head, and then the encryption and decryption that complete file operate, the file that drives layer, according to file header information, file decryption is reduced into to the normal file size when reading file is submitted to application layer, updating file header in the time of written document, be saved in disk file affix file header;
Process Protection drives 9 to connect user's state security service library 7 and kernel state security service library 11, after receiving the notice of finger daemon module 2, process to opening document is protected (kernel hooking, Process Protection, process authentication, systematic protection), simultaneously mutual by encryption middleware interface and cryptosystem device (not shown) in user's state security service library 7, document is encrypted, deciphers, signs and the operation such as checking;
Networks filter driver 10 connects user's state security service library 7 and kernel state security service library 11, after receiving the notice of finger daemon module 2, the process of opening document is carried out to network protection;
The kernel state security service library, for filter Driver on FSD, Process Protection driving, networks filter driver provide the functions such as scope check, process resource tracking and system integrity inspection.
In the present embodiment, system plugin 5 comprises the Clipboard(clipbook) protection module, COM(COM assembly) protection module, Data Copy(data copy) protection module, the exchange of DDE(dynamic data) protection module, File Mapping(File Mapping) protection module, MailSlots(mailslot) protection module, Pipes(pipeline) protection module, RPC(remote procedure call) protection module, Widows Sockets(Windows socket) protection module.
Plug-in management module 6 comprises plug-in management module interface, Hook function and plug-in unit access; The plug-in management module interface comprises that plugin card installation, plug-in unit load and the Hook operation; Plugin card installation, plug-in unit load, the Hook operation is operated according to plug-in card configuration, and the plug-in unit access connects Hook function and Hook operation, and the access plug-in unit is responsible in the plug-in unit access.
Finger daemon module 2 comprises application communication thread, kernel communication thread, communication request processing unit, configuration management, user's state Filter management module, kernel module interface and middleware access interface, the communication request processing unit connects respectively application communication thread, kernel communication thread, configuration management, user's state Filter management module and kernel module interface, and configuration management connects kernel module interface and middleware access interface.
SDK interface 1 comprises auxiliary function, callback interface, installation and initialization and encryption and decryption, callback interface is by the KcgSetCallback(function name, lower same) and the KcgCallBackFunction composition, installation and initialization are comprised of KcgOpen and KcgClose, and the parameter of KcgCallBackFunction is comprised of KCBE_ShellOpen, KCBE_CreateDocument, KCBE_OpenDocument and KCBE_CloseDocument.
Process Protection drives 9 comprise striding course internal memory fetch protection, dynamic base injection protection, the protection of malice hook, GDI object protection and show conservation of resources.
Referring to Fig. 2, is fundamental diagram of the present invention.Centered by Process Protection and file protection, in figure, the process authentication refers to: distinguish trusted process in system kernel; Filter Driver on FSD refers to: realize the transparent encryption and decryption of file, do not affect user's operation; Process Protection refers to: for the protection of trusted process implementation process, stop illegal interprocess communication.Operation is filtered and is referred to: according to the I/O operation of security strategy implementation process, filter.The present invention starts with from whole system, for perform document editor's process is set up a restricted environment.All designs are only for trusted process, and range of control converges to the protection of proceeding internal memory with to the I/O operation of process and filters.For untrusted process, only give its encrypt data.
Referring to Fig. 3, is application example figure of the present invention, in figure document safety management system client by: " document operating room ", " mail transmission/reception chamber ", " business processing chamber ", " operating room in addition " and " system management chamber " five major parts form.
To sum up, the invention enables the document of opening all to guarantee integrality, authenticity, reliability in internal memory, in disk, in transmission, cut off the path that active leakage and the passive attack of document are leaked.Thereby integrality, confidentiality, the non repudiation of electronic document have been guaranteed; Make electronic document obtain complete protection in whole life cycle, thereby reach document information, be immune against attacks and leak and initiatively leak.
Above embodiment is used for illustrative purposes only, but not limitation of the present invention, person skilled in the relevant technique, without departing from the spirit and scope of the present invention, can also make various conversion or modification, therefore all technical schemes that are equal to also should belong to category of the present invention, should be limited by each claim.

Claims (7)

1. an electronic document safety system; external document file management system; it is characterized in that; described electronic document safety system comprises SDK interface, finger daemon module, editing machine, editing machine plug-in unit, system plugin, plug-in management module, user's state security service library, filter Driver on FSD, Process Protection driving, networks filter driver and kernel state security service library, wherein:
The SDK interface, connect described document file management system, finger daemon module and user's state security service library, for transmitting document data;
Editing machine, for the editor of document;
The plug-in management module, connect described finger daemon module, editing machine plug-in unit and system plugin, for accepting calling of described finger daemon module, described editing machine plug-in unit and system plugin inserted in described editing machine;
The editing machine plug-in unit, connect described editing machine, for intercepting and capturing the operation of described editing machine for document;
System plugin, for completing the interception action of Windows API;
User's state security service library, connect respectively described editing machine plug-in unit, system plugin, plug-in management module, finger daemon module, filter Driver on FSD, Process Protection driving and networks filter driver, for the kernel module interface being provided and encrypting middleware interface;
The finger daemon module, connect described system plugin, for the control to described system plugin, and receive the operation for document of editing machine that described editing machine plug-in unit intercepts and captures, after analyzing and processing, by described user's state security service library, notify described filter Driver on FSD, Process Protection driving and networks filter driver to be moved;
Filter Driver on FSD, connect described user's state security service library and kernel state security service library, for receiving the notice of described finger daemon module, document carried out to transparent encryption and decryption;
Process Protection drives, connect described user's state security service library and kernel state security service library, for receiving the notice of described finger daemon module, process to opening document is protected, simultaneously mutual by described encryption middleware interface and cryptosystem device, document is encrypted, deciphers, signs and verifies;
Networks filter driver, connect described user's state security service library and kernel state security service library, for receiving the notice of described finger daemon module, the process of opening document carried out to network protection;
The kernel state security service library, for filter Driver on FSD, Process Protection drive, networks filter driver provides scope check, process resource is followed the tracks of and the system integrity inspection.
2. electronic document safety system according to claim 1; it is characterized in that, described system plugin comprises Clipboard protection module, COM protection module, Data Copy protection module, DDE protection module, File Mapping protection module, MailSlots protection module, Pipes protection module, RPC protection module, Widows Sockets protection module.
3. electronic document safety system according to claim 1, is characterized in that, described plug-in management module comprises plug-in management module interface, Hook function and plug-in unit access; The plug-in management module interface comprises that plugin card installation, plug-in unit load and the Hook operation; Plugin card installation, plug-in unit load, the Hook operation is operated according to plug-in card configuration, and the plug-in unit access connects Hook function and Hook operation, and the access plug-in unit is responsible in the plug-in unit access.
4. electronic document safety system according to claim 1; it is characterized in that; described finger daemon module comprises application communication thread, kernel communication thread, communication request processing unit, configuration management, user's state Filter management module, kernel module interface and middleware access interface; described communication request processing unit connects respectively described application communication thread, kernel communication thread, configuration management, user's state Filter management module and kernel module interface, and described configuration management connects kernel module interface and middleware access interface.
5. electronic document safety system according to claim 1; it is characterized in that; described SDK interface comprises auxiliary function, callback interface, installation and initialization and encryption and decryption; callback interface is comprised of KcgSetCallback and KcgCallBackFunction; installation and initialization are comprised of KcgOpen and KcgClose, and the parameter of KcgCallBackFunction is comprised of KCBE_ShellOpen, KCBE_CreateDocument, KCBE_OpenDocument and KCBE_CloseDocument.
6. electronic document safety system according to claim 1, is characterized in that, described Process Protection drives and comprises striding course internal memory fetch protection, dynamic base injection protection, the protection of malice hook, GDI object protection and show conservation of resources.
7. electronic document safety system according to claim 1, is characterized in that, described filter Driver on FSD is used filter Driver on FSD to realize the transparent encryption technology.
CN201310423305.9A 2013-09-17 2013-09-17 A kind of electronic document security system Active CN103488949B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201310423305.9A CN103488949B (en) 2013-09-17 2013-09-17 A kind of electronic document security system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201310423305.9A CN103488949B (en) 2013-09-17 2013-09-17 A kind of electronic document security system

Publications (2)

Publication Number Publication Date
CN103488949A true CN103488949A (en) 2014-01-01
CN103488949B CN103488949B (en) 2016-08-17

Family

ID=49829163

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201310423305.9A Active CN103488949B (en) 2013-09-17 2013-09-17 A kind of electronic document security system

Country Status (1)

Country Link
CN (1) CN103488949B (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104680079A (en) * 2015-02-04 2015-06-03 上海信息安全工程技术研究中心 Electronic document security management system and electronic document security management method
CN109657490A (en) * 2018-11-20 2019-04-19 福建亿榕信息技术有限公司 A kind of transparent encryption and decryption method and system of office document
CN111343132A (en) * 2018-12-19 2020-06-26 华为技术有限公司 File transmission detection method and device and storage medium
CN114239012A (en) * 2021-12-15 2022-03-25 成都飞机工业(集团)有限责任公司 RSA offline encryption technology suitable for CAA secondary development software

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101009699A (en) * 2006-01-25 2007-08-01 姜斌斌 Transparent local security environment system and its implementation method
CN101101622A (en) * 2007-07-10 2008-01-09 北京鼎信高科信息技术有限公司 Method for constructing transparent coding environment
CN101729550A (en) * 2009-11-09 2010-06-09 西北大学 Digital content safeguard system based on transparent encryption and decryption method thereof

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101009699A (en) * 2006-01-25 2007-08-01 姜斌斌 Transparent local security environment system and its implementation method
CN101101622A (en) * 2007-07-10 2008-01-09 北京鼎信高科信息技术有限公司 Method for constructing transparent coding environment
CN101729550A (en) * 2009-11-09 2010-06-09 西北大学 Digital content safeguard system based on transparent encryption and decryption method thereof

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104680079A (en) * 2015-02-04 2015-06-03 上海信息安全工程技术研究中心 Electronic document security management system and electronic document security management method
CN109657490A (en) * 2018-11-20 2019-04-19 福建亿榕信息技术有限公司 A kind of transparent encryption and decryption method and system of office document
CN109657490B (en) * 2018-11-20 2021-08-10 福建亿榕信息技术有限公司 Transparent encryption and decryption method and system for office files
CN111343132A (en) * 2018-12-19 2020-06-26 华为技术有限公司 File transmission detection method and device and storage medium
CN111343132B (en) * 2018-12-19 2022-03-01 华为技术有限公司 File transmission detection method and device and storage medium
CN114239012A (en) * 2021-12-15 2022-03-25 成都飞机工业(集团)有限责任公司 RSA offline encryption technology suitable for CAA secondary development software

Also Published As

Publication number Publication date
CN103488949B (en) 2016-08-17

Similar Documents

Publication Publication Date Title
US11362815B2 (en) Trusted data transmission methods, apparatuses, and devices
US10079835B1 (en) Systems and methods for data loss prevention of unidentifiable and unsupported object types
CN101952809B (en) Computer storage device having separate read-only space and read-write space, removable media component, system management interface, and network interface
US8234496B1 (en) Image leak prevention using digital watermark
CN105553940A (en) Safety protection method based on big data processing platform
CN104065651A (en) Information flow dependability guarantee mechanism for cloud computation
CN103218575A (en) Host file security monitoring method
CN104268484A (en) Cloud environment data leakage prevention method based on virtual isolation mechanism
CN101877246A (en) U disk encryption method
CN103488949A (en) Electronic document security system
Yu et al. A novel watermarking method for software protection in the cloud
CN101699456A (en) Computer security system and method thereof
JP2016522511A (en) Management apparatus and management method for file security for protecting system
CN111914275B (en) File leakage prevention monitoring method
Altayaran et al. Security threats of application programming interface (API's) in internet of things (IoT) communications
Lee et al. Classification and analysis of security techniques for the user terminal area in the internet banking service
CN103577771A (en) Virtual desktop data leakage-preventive protection technology on basis of disk encryption
Petkovic et al. A host based method for data leak protection by tracking sensitive data flow
US20240054227A1 (en) Identification of a resource attack path by connecting code, configuration, and telemetry
CN103051608B (en) A kind of method and apparatus of movable equipment access monitoring
CN102034040A (en) Log implementation method in encryption card
CN103023651B (en) Be used for the method and apparatus of the access of monitoring movable equipment
Kemerlis et al. iLeak: A lightweight system for detecting inadvertent information leaks
CN114282229A (en) Gradient-based non-sensing encryption and decryption system and method
Lei et al. Self-recovery Service Securing Edge Server in IoT Network against Ransomware Attack.

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
TR01 Transfer of patent right

Effective date of registration: 20181122

Address after: A-154 Pudong Software Park, 498 GuoShoujing Road, China (Shanghai) Free Trade Pilot Area, Pudong New Area, Shanghai, 200120

Patentee after: Shanghai Yidian Wulian Technology Co., Ltd.

Address before: Room 7E-154, 348 Park Road, Qingpu District, Shanghai, 2003

Patentee before: Shanghai Yidong Network Information Co., Ltd.

TR01 Transfer of patent right