KR101790566B1 - Method and apparatus of providing feedback for information searching - Google Patents

Method and apparatus of providing feedback for information searching Download PDF

Info

Publication number
KR101790566B1
KR101790566B1 KR1020160007212A KR20160007212A KR101790566B1 KR 101790566 B1 KR101790566 B1 KR 101790566B1 KR 1020160007212 A KR1020160007212 A KR 1020160007212A KR 20160007212 A KR20160007212 A KR 20160007212A KR 101790566 B1 KR101790566 B1 KR 101790566B1
Authority
KR
South Korea
Prior art keywords
information
feedback
client
request
inquiry
Prior art date
Application number
KR1020160007212A
Other languages
Korean (ko)
Other versions
KR20170022840A (en
Inventor
범진규
김우택
Original Assignee
(주)드림시큐리티
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by (주)드림시큐리티 filed Critical (주)드림시큐리티
Publication of KR20170022840A publication Critical patent/KR20170022840A/en
Application granted granted Critical
Publication of KR101790566B1 publication Critical patent/KR101790566B1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • G06F21/12Protecting executable software
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/56Computer malware detection or handling, e.g. anti-virus arrangements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1441Countermeasures against malicious traffic
    • H04L63/1483Countermeasures against malicious traffic service impersonation, e.g. phishing, pharming or web spoofing
    • H04L67/26

Abstract

A method and apparatus are provided for providing feedback to an information query. The server receives a request for information query from the client and sends a response to the request to the client. In addition, the server obtains data associated with the information for which the query is requested, and uses the acquired data to generate additional results for the query. The server provides feedback, including additional results, to the client or other device associated with the user of the client.

Description

[0001] METHOD AND APPARATUS FOR PROVIDING FEEDBACK FOR INFORMATION SEARCHING [0002]

The following embodiments relate to a method and apparatus for an information query service, and more particularly to a method and apparatus for providing feedback on information query.

The information inquiry service provides the result of the information inquiry about the request of the information inquiry of the user. When the user 's client sends a request for information inquiry, the server performs an inquiry on the information and provides the result of the inquiry to the client.

In general, the investigation of information is based on existing known information. Thus, before a user requests an information query and the server generates a result for the information query request, only the information that the server has already acquired or can acquire can be included in the results of the search.

On the other hand, according to the attribute of the object of inquiry, there is no or little information related to the object before a specific point in time, and thereafter, a large amount of information is generated or important information is generated in relation to the object. For example, when smishing occurs over the Internet, information on smsing is not gathered initially, and a large amount of information can be collected while a large number of victims are generated. In such a case, information about the smsing may not be provided to the users who requested the information search before the specific point in time when the information collection is performed.

Therefore, even if the result of the information inquiry is once provided for the request of the information inquiry of the user, a technique of informing the user of the information further related to the request is required.

One embodiment may provide an apparatus and method for providing feedback to a user at a later time even when the result of the inquiry is not present at the time of inquiry of the information.

One embodiment can provide an apparatus and method for improving the quality of an information inquiry service by providing feedback to a user at a later time.

A method comprising: receiving, at a party, a request for an inquiry of information from a client, performed by a server; Sending a response to the request to the client; Storing data required for feedback on the request; Obtaining data related to the information for which the inquiry is requested; Using the data to generate additional results for the query; And providing feedback comprising an additional result to the client or another device associated with a user of the client.

The method of providing feedback for the information inquiry may further include performing the inquiry.

The response may provide feedback to an information query that includes the result of the query.

If the result of the query is not present, the response may indicate that the result does not exist.

The method of providing feedback for the information inquiry may further include determining whether the feedback is required for the request.

The step of generating the additional result and the step of providing the feedback may be performed when it is determined that the feedback is necessary.

If the result of the inquiry does not exist, it can be determined that the feedback is necessary for the request, and if the result of the inquiry is present, it can be determined that the feedback is not required for the request.

If the information is related to phishing or spamming, it may be determined that the feedback is needed for the request.

It may be determined that the feedback is required for the request when the users having the predetermined reference value or more commonly request the inquiry of the information.

It may be determined that the feedback is required for the request if the request explicitly requests the feedback.

The data required for the feedback may include data required to specify the client in the network.

The step of providing the feedback may include transmitting a push request of the feedback to the push server.

The feedback may be sent to the client or the other device via the push server.

The feedback may be transmitted to the client or the other device through a service provided by the push server.

The service provided by the push server may be different from the service used by the server to provide the response to the client.

Wherein the server provides feedback to an information inquiry that provides the user with the feedback related to the information in the future, even if the result of the inquiry does not exist at the time of the request.

The inquiry object may be a character received by the user or an application installed by the user.

A communication unit, on the other side, for receiving a request for inquiring information from a client and transmitting a response to the request to the client, the communication being performed by the server; And a processing unit for obtaining data related to the information for which the inquiry is requested and using the data to generate additional results for the inquiry,

The communication unit provides feedback to an information inquiry that provides feedback including the additional result to the client or another device associated with the user of the client.

In addition, there is further provided another method, apparatus, system for implementing the invention and a computer readable recording medium for recording a computer program for executing the method.

There is provided an apparatus and method for providing feedback to a user at a later time even when the result of the inquiry is not present at the time of inquiry of information inquiry.

There is provided an apparatus and method for improving the quality of an information inquiry service by providing feedback to a user at a later time.

1 shows a configuration of an information inquiry system according to an example.
2 is a configuration diagram of a server according to an example.
3 is a flow diagram of a method of providing feedback in accordance with one embodiment.
4 is a flow diagram of a method of providing feedback using a push server in accordance with one embodiment.
FIG. 5 illustrates a method of providing a request for inquiry of information about a smearing character according to an example and a response to the request.
Figure 6 illustrates a method for providing feedback on smearing characters according to an example.
Figure 7 illustrates information stored in a feedback database according to an example.

The following detailed description of exemplary embodiments refers to the accompanying drawings, which illustrate, by way of illustration, specific embodiments. These embodiments are described in sufficient detail to enable those skilled in the art to practice the embodiments. It should be understood that the various embodiments are different, but need not be mutually exclusive. For example, certain features, structures, and characteristics described herein may be implemented in other embodiments without departing from the spirit and scope of the invention in connection with an embodiment. It is also to be understood that the location or arrangement of the individual components within each disclosed embodiment may be varied without departing from the spirit and scope of the embodiments. The following detailed description is, therefore, not to be taken in a limiting sense, and the scope of the exemplary embodiments is to be limited only by the appended claims, along with the full scope of equivalents to which such claims are entitled, if properly explained.

In the drawings, like reference numerals refer to the same or similar functions throughout the several views. The shape and size of the elements in the figures may be exaggerated for clarity.

The terms used in the examples are intended to illustrate the embodiments and are not intended to limit the invention. In the examples, the singular includes the plural unless otherwise stated in the specification. It is noted that the terms "comprises" and / or "comprising" used in the specification are intended to be inclusive in a manner similar to the components, steps, operations, and / And that additional configurations may be encompassed within the scope of the embodiments of the exemplary embodiments or the technical ideas of the exemplary embodiments. When it is mentioned that a component is "connected" or "connected" to another component, the two components may be directly connected or connected to each other, It is to be understood that other components may be present in the middle of the components.

The terms first and second, etc. may be used to describe various components, but the components should not be limited by the terms above. The above terms are used to distinguish one component from another. For example, without departing from the scope of the right, the first component may be referred to as a second component, and similarly, the second component may also be referred to as a first component.

In addition, the components shown in the embodiments are shown independently to represent different characteristic functions, which does not mean that each component is composed of separate hardware or one software constituent unit. That is, each component is listed as each component for convenience of explanation. For example, at least two of the components may be combined into a single component. Also, one component can be divided into a plurality of components. The integrated embodiments and the separate embodiments of each of these components are also included in the scope of the right without departing from the essence.

Also, some components are not essential components to perform essential functions, but may be optional components only to improve performance. Embodiments may be implemented only with components that are essential to implementing the essentials of the embodiments, and structures within which the optional components are excluded, such as, for example, components used only for performance enhancement, are also included in the scope of the right.

Hereinafter, embodiments of the present invention will be described in detail with reference to the accompanying drawings in order to facilitate embodiments of the present invention by those skilled in the art. In the following description of the embodiments, detailed description of known functions and configurations incorporated herein will be omitted when it may make the subject matter of the present disclosure rather unclear.

Hereinafter, the terms "application" and the term "app" can be used interchangeably and can be interchanged with each other.

1 shows a configuration of an information inquiry system according to an example.

The information query system 100 may include a client 110, a server 120, and a database 130.

The client 110 may be a communicable device such as a smartphone and a personal computer.

The user's client 110 can send a request for information inquiry to the server 120. [

The server 120 may send a request for information inquiry again to the database 130 in order to provide a response to the request for information inquiry of the client 110. [ For example, the server 120 may retrieve the requested information from the database 130.

The database 130 may provide the server 120 with the results of the information query. When the result of the information query is provided from the database 130, the server 120 can provide the client 110 with the result of the information query.

The database 130 may be internal to the server 120 or may be another external server connected to the server 120 via a network.

The database 130 may be plural. For example, the server 120 may send a request for information inquiry to each of a plurality of databases. The server 120 may also receive the results of the information query from each of the plurality of databases and may generate an aggregated result of the information query by summing the results of the received information queries. The server 120 may provide the client 110 with an integrated result of the information query.

In the following, in addition to the results of a conventional information inquiry, embodiments for providing feedback to an information inquiry to a client 110 are described.

2 is a configuration diagram of a server according to an example.

2, the server 120 includes a processing unit 221, a memory 223, a user interface (UI) input device 226, a UI output device 227 and a storage 228.

The processing unit 221 may be at least one processor. The processing unit 221 may be a semiconductor device that executes the processing instructions stored in the memory 223 or the storage 228. [ The processing unit 221 can process a job required for the operation of the server 120. [ The processing unit 221 can execute the code of the operation or step of the processing unit 221 described in the embodiments

Memory 223 and storage 228 may be various types of volatile or non-volatile storage media. For example, the memory may include at least one of a ROM (R) 224 and a RAM (RAM) Memory 223 and storage 228 may store the data required for operation of server 120. [ The store 228 may include a database 130. Alternatively, the storage 228 may store data of the database 130. [

The server 120 may further include a communication unit 229 connected to the network 230. The communication unit 229 can receive data or information required for the operation of the server 120 and can transmit data or information required for the operation of the server 120. [ The communication unit 229 can transmit data to another device in the network 230 and can receive data from another device. For example, the communication unit 229 may be a network chip or a port.

3 is a flow diagram of a method of providing feedback in accordance with one embodiment.

In step 310, the communication unit 229 of the server 120 may receive a request for inquiry of information from the client 110. [

In step 320, the processing unit 221 of the server 120 may perform an inquiry of information.

For example, the processing unit 221 of the server 120 can perform the inquiry of information by searching the database of the server 120. [

For example, the communication unit 229 of the server 120 may transmit a request for information inquiry to an external database 130. [

The external database 130 may be plural. In other words, the server 120 can provide a result of querying all databases of a plurality of search agencies as a result of a request for inquiry of information at a time.

Also, the database 130 may be a database based on the cloud.

In step 330, the processing unit 221 of the server 120 may obtain the result of the inquiry of information.

For example, the processing unit 221 of the server 120 can obtain the result of searching the database of the server 120. [

For example, the communication unit 229 of the server 120 can receive the result of the inquiry of the information from the external database 130. [

In some cases, the result of inquiry of information may not exist. That is to say, there may not be any information regarding the inquiry object for which the inquiry is requested. In this case, the processing unit 221 of the server 120 can confirm that the result of inquiry of information does not exist.

In step 340, the communication unit 229 of the server 120 may transmit a response to the request for information inquiry to the client 110. [

If the outcome of the query does not exist, the above response may indicate that there is no outcome of the inquiry of information. Alternatively, the above response may include the result of an inquiry of information.

In step 350, the processing unit 221 of the server 120 may determine whether feedback is required for a request for information query. If the processing unit 221 determines that feedback is required, the following steps 360, 370, 380, and 390 may be performed. If the processing unit 221 determines that feedback is not needed, the procedure may end.

The processing unit 221 of the server 120 may determine whether or not feedback is required based on the result of inquiry of the characteristics and / or information of the inquired information requested.

For example, the processing unit 221 of the server 120 can determine that feedback is necessary when the result of inquiry of information does not exist, and judges that feedback is necessary when the result of inquiry of information does not exist If there is a result of inquiry of information, it can be judged that feedback is not necessary.

For example, when the information requested for inquiry is related to phishing or smearing, the processing unit 221 of the server 120 may determine that feedback is required for requesting information inquiry.

For example, when requesting the inquiry of information common to users who have a predetermined reference value or more, the processing unit 221 of the server 120 may determine that feedback is required for a request for information inquiry. In other words, the processing unit 221 of the server 120 can provide feedback on information requested to be inquired by a plurality of users. Alternatively, when requesting the inquiry of information in common with users whose reference value is within the predetermined time, the processing unit 221 of the server 120 may determine that feedback is required for the request for information inquiry.

For example, the processing unit 221 of the server 120 determines that feedback is required for a request for inquiry of information when a request for inquiry of information explicitly requests feedback by a user of the client 110 . In this case, the request for inquiring the information may include information indicating that the feedback is requested.

In step 360, the processing unit 221 of the server 120 may store the data required for feedback on the request for information inquiry. For example, the processing unit 221 of the server 120 may store data required for feedback in the database.

The data required for feedback may include data required to specify the client 120 in the network. In addition, the data required for feedback may include the data required to provide feedback to the user.

For example, in communication between the client 110 and the server 120, a session may be maintained. When the server 120 receives a request for information inquiry through a session from the client 110, the server 120 may transmit a response to the request to the client 110 through the session. On the other hand, the feedback provided in the step 390 to be described later may be provided after a considerable time after the client 110 transmits a request for inquiry of information to the server 120. It may not be appropriate for the session between the client 110 and the server 120 to be continuously maintained for the feedback of whether or not to provide and the timing of the provision is uncertain. Therefore, in order for the server 120 to provide feedback to the client 110 after the session is released, certain data needs to be managed by the server 120. [

Alternatively, the feedback may be provided to other devices associated with the user of the client 110 rather than the client 110. Thus, the data required for feedback may be the data required to specify the other device in the network. For example, the data required for feedback may be the network address of the other device.

The data required for feedback can be discarded if the predefined conditions are met. For example, once the client 110 is provided with feedback on the request for information inquiry through step 390, the processing unit 221 may discard the data required for feedback.

For example, the data required for feedback may include a user identifier (ID), the category of the information for which the query was requested, and the result of an inquiry of the information. The user identifier may be a Caller ID (CID).

At step 370, the processing unit 221 of the server 120 may obtain data related to the information for which the query is requested. Here, the data associated with the information for which the query was requested may refer to data that enables the query to generate additional results for the requested information.

For example, the database of the server 120 may be updated, and data related to information requested to be inquired may exist among the data added by the update.

In terms of privacy protection, the processing unit of the server 120 may perform hashing or encryption on the data required for feedback, and may perform hashing of the data generated by hashing or encryption, Data can be stored. Hashing or encryption can be done for each item of data required for feedback. Alternatively, hashing or encryption may be performed for each unit of data required for feedback. For example, the unit of hashing or encryption may be a word.

At step 380, the processing unit 221 of the server 120 may use the data associated with the information for which the query was requested to generate additional results for the inquiry of information.

At step 390, the communication unit 229 of the server 120 may provide feedback to the client 110 or another device associated with the user of the client 110 to request the inquiry of information. The feedback may include an additional result for an inquiry of the information generated in step 380.

For example, other devices associated with the user of client 110 may be the user's smartphone.

In providing the feedback to the client 110, the processing unit 221 of the server 120 may use the data required for the stored feedback at step 360. [

The communication unit 229 of the server 120 may provide feedback to the client 110 or another device related to the user of the client 110 through the push. The communication unit 229 of the server 120 may provide feedback to the client 110 or another user associated with the client 110 through the push service used by the client 110. [

Through the feedback providing method described above, the server 120 can provide feedback to the user at a later time even if the result of the inquiry is not present at the time of the inquiry of information inquiry. Therefore, the quality of the information inquiry service can be improved.

At least some of the above-described steps 350, 360, 370, 380, and 390 may be repeated one or more times. That is to say, the provision of the feedback by the server 120 to the client 110 or another apparatus related to the user of the client 110 may not be limited to one. For example, the first feedback may include a message that subsequent feedback may be provided, and the subsequent feedback may include information about the referenced subject for which the query was requested.

4 is a flow diagram of a method of providing feedback using a push server in accordance with one embodiment.

The embodiment described with reference to Fig. 4 and the embodiment described above with reference to Fig. 3 can have a common part. The steps 310, 320, 330, 340, 350, 360, 370 and 380 described above with reference to Figure 3 are performed in steps 410, 420, 430, 440, 450, 460, 470 and 480 of Figure 4 Respectively. Duplicate description is omitted.

Step 390 may include steps 490 and 495. [

In step 490, the communication unit 229 of the server 120 may send a push request of the feedback to the push server 400. [

At step 495, the push server 400 may send feedback to the client 110 or other device associated with the user of the client 110 for a request for information inquiry via push.

A user of the client 110 can subscribe to both sides of the server 120 and the push server 400 as a user.

In terms of protection of the user's personal information, the server 120 and the push server 400 may have different levels of user information with respect to the user. For example, the server 120 can recognize the client 110 using the CID or the unique number of the client, and the push server 400 can recognize the client 110 and the user of the client, respectively .

In one embodiment, in step 490, the push request may include first user identification information. The first user identification information may be a degree of information that the user can not specify to send feedback only by the first user identification information itself.

The push server 400 may retrieve the second user identification information required to push the feedback to the client 110 using the first user identification information. At step 495, the push server 400 may send feedback to the client 110 using the second user identification information. In other words, the push server 400 can perform mapping between the first user identification information and the second user identification information, and through the mapping of the push server 400, the server 120 uses only the first user identification information Feedback may be provided to the client 110 or other device associated with the user of the client 110.

Feedback to the inquiry of the information can be provided to the client 110 or another device related to the user of the client 110 through the service provided by the push server 400. [ Here, the service provided by the push server 400 may be such that the client 110 transmits a request for information inquiry to the server 120, and the server 120 provides a response to the inquiry request to the client 110 And may be different from the service used to do so.

For example, the push server 400 may be a messenger server. The first user identification information may be a CID of a client 110, a telephone number or a terminal unique number, and the second user identification information may be a user identifier in the messenger. Push server 400 may provide feedback to client 110 (or other device associated with a user of client 110) using an application installed in client 110 (or other device associated with a user of client 110) . For example, even when the client 110 transmits a request for inquiry of information to the server 120 via the Internet and receives the result of the inquiry, the user of the client 110 can access the instant messenger 400 of the push server 400 To provide additional feedback on the inquiry.

By using the push server 400, the user of the client 110 can easily and stably obtain the information requested by the user.

An exemplary scenario of providing feedback (malicious application)

The following scenario illustrates an example where the aforementioned feedback providing method is used in connection with a malicious application.

1) A new virus "A" application may be distributed via the Internet or the like.

2) When a client 110 is infected with an "A" application or when a client attempts to install an "A" application on the client 110, .

The information requested by the user in step 410 may be information about a specific object.

At step 410, the client 110 may send a request to the server 120 to inquire information about the "A"

3) Upon request for information inquiry, the server 120 may query information about the "A" application at step 420. In addition, at step 430, the server 130 may obtain the result of the inquiry of the information about the "A" application (that is, information about the "A" application). However, at the time of inquiry, information about the "A" application may not exist in the server 120 or the database 130, and therefore, the result of the inquiry may not exist.

4) In step 440, the server 120 may send a response to the request for information query for the "A" application to the client 110.

The response may indicate that there is no result of the inquiry of information. For example, the response may include a message of "unknown application." Alternatively, the response may indicate that the safety of the "A" application can not be verified.

5) In step 450, the server 120 may determine that feedback is required for querying information about the "A" application. In addition, at step 460, the server 120 may store the data required for feedback on the request for information query for the "A" application. For example, the server 120 may determine that the query object requested to be queried is the "A" application, (2) if additional data for the "A" application is obtained, Feedback on the request for information inquiry should be provided, and (3) user information of the user to provide the feedback.

6) Subsequently, the server 120 may obtain information on the "A 'application (or information related to a request for information on the" A "application).

For example, the server 120 may acquire information that the "A" application is a malicious application by taking an analysis of the "A" application. Alternatively, the server 120 may obtain information from the database 130 that the "A" application is a malicious application.

For example, if some victims occur by the "A" application, the server 120 obtains information from an external entity, such as the database 130 and other servers, that the "A & .

7) At step 480, the server 120 may generate additional results for the inquiry of information for the "A" application. For example, an additional result may include a message indicating that the "A" application is a malicious application. Alternatively, the additional result may include a message suggesting or leading to the deletion of the "A" application.

8) In steps 490 and 495, the server 120 may provide feedback to the client 110 about the request for information query. The feedback may include additional results generated in step 480. Through the feedback, the user of the client 110 can acquire sufficient information about the "A" application, which is the object of inquiry, through an easy and stable service such as push or the like,

Encryption for protection of personal information

The user can confirm through the server 120 whether the received character is a smile character or a phishing character. In other words, in step 310, the client 110 may transmit a request to the server 120 to inquire information about the character received by the user of the client 110.

The information requested by the user in step 310 may be information on a specific object. When the information requested by the user is information on a specific object, the specific object is referred to as an object of inquiry.

In addition, the request for information inquiry may include the object of inquiry as described above, and may include information of the object of inquiry. For example, a request for information retrieval may include characters received by the user.

In order to provide feedback to the user, it is necessary to store the information about the object of inquiry or the object of inquiry in the server 120. [ That is to say, the data required for the feedback of the step 360 may include information about the object of inquiry or object of inquiry. For example, the data required for the feedback of step 360 may include the character received by the user.

A method of storing the object of inquiry as it is in the server 120 and using the object of inquiry stored later may be used. However, if the object of inquiry includes the personal information of the user, a problem such as leakage of personal information may occur. In order to prevent such a problem, in step 360, the processing unit 221 of the server 120 may perform encryption on the object of inquiry and store the object of the inquiry.

The text below can indicate the characters received by the user. According to the contents of the characters, the characters received by the user may be suspicious characters.

[November smart statement has been sent. Go straight to Http://goo.gl/zidkska]

In step 360, the processing unit 221 of the server 120 may perform encryption on the whole of the object of inquiry. For example, encryption may be word-based encryption for the entirety of the query object, may be one-way encryption, or may be encryption using hashing.

The text below may indicate the encrypted character generated by the processing unit 221 of the server 120 performing encryption of the entire character received by the user.

[5e12e956c42b0eb61784eac832c371bfc16b24a42a0edc24037c0823b6c47db2b0c87e8d4b9aa3c984b124de778d7bb72106b34664f6d7e638144d7a1fea7c8728bce91180eb12170eecbe76ad8840264ef7f611d98a2cf258aab16a552ce152a101b93c34beedcb8068639a2bba307278642668f32b9a645eaa7a0886b5e2340067aedb44319644a70f1dec0335ac71847d6e0e77dfb107d2f200c0d3637471a441b444c56119c0f154f8171ad9ebd4d7a07adeecae6ac944f56106564a76d8a009d35ff93859081f1d6b0136b52f86df22715af2b309cb0bae873f9b462ec865daf0968eea2ca42b7212db1055769c32ebbdfd8f6aba8f46813ce0aa9636dd]

If encryption is performed on the whole of the object of inquiry, there may be a problem that the speed of the inquiry and the overall processing speed are slowed down.

In order to solve such a problem, the processing unit 221 can perform encryption only on a selected part of the object of inquiry. For example, the selected portion may be a portion that can include the user's personal information of the object of inquiry, or a portion corresponding to the user's personal information.

Alternatively, the processing unit 221 may exclude a selected part of the object of inquiry from the encryption. For example, the selected part may be a part of the object of inquiry that does not correspond to the personal information of the user. For example, the part of the object of inquiry which is excluded from the encryption may be a part indicating a URL (URL).

It is possible to prevent the problem of slowing the processing speed while protecting the personal information by performing encryption only for a selected part of the harmonization object or excluding a selected part from encryption.

The text below may represent the encrypted character generated by the processing unit 221 of the server 120 performing encryption for the rest of the characters except for the portion indicating the URL.

f880aef78fc835c4e92a21d41859f75d252dcfc9deff36e01804eb765994830d

Part for privacy protection / separate storage

The processing unit 221 of the server 120 may store a part of the objects to be referred to, and may separately store a part and the rest.

For example, when the object of inquiry is the character received by the user, the processing unit 221 of the server 120 may store only the part of the characters received by the user, which represents the URL. Alternatively, when the object of inquiry is a character received by the user, the processing unit 221 of the server 120 may store a part indicating the URL among the characters received by the user, separately from the remaining part.

The text below may represent a saved portion of the characters received by the user being viewed. The stored portion may be a portion indicating a URL among characters.

Http: // goo. gl / zidkska

An exemplary scenario of providing feedback (smsing text)

FIG. 5 illustrates a method of providing a request for inquiry of information about a smearing character according to an example and a response to the request.

5, a verification processing unit 510, a smoothing information database 520, and a feedback database 530 are shown.

The smoothing information database 520 may store a smoothing name, a smoothing character string, a smoothing URL, a smoothing phone number, a smoothing warning message, and application information as smoothing information. In addition, the smoothing information database 520 may store application names and hash values for application identification as application information.

The verification processing unit 510 may represent an application or a program that performs processing for a request for information inquiry.

For example, the processing unit 221 may execute the code of the verification processing unit 510, and the memory 223 and / or the storage 228 may store the code of the verification processing unit 510. [

The smoothing information database 520 may be a database storing the smoothing information among the databases of the server 120. [ The feedback database 530 may be a database that stores data required for feedback among the databases of the server 120. [

Hereinafter, when a user receives a suspicious character as a smearing character, a process of requesting inquiry of information about the received character and receiving a response to the request will be described. That is to say, in the embodiment below, the object of inquiry may be the character received by the user.

In step 310 described above with reference to FIG. 3, the client 110 may send a request for information inquiry to the server 120. Here, the information requested to be inquired may be information on whether or not the character received by the user is a smearing character. The request for information retrieval may include characters received by the user.

In step 320, the processing unit 221 of the server 120 can inquire whether the received character is a smoothing character. For example, the processing unit 221 of the server 120 may search the smissing information database 520 for data used to determine whether the received character is a smearing character.

In step 330, the processing unit 221 may obtain the result of the search as a result of the information query.

The result of the search may include 1) information indicating whether the received character is a smoothing character. In addition, if the received character is a smoothing character, the result of the search may include 2) an attribute of the smoothing (e.g., smoothing name), and 3) a smoothing warning message.

Alternatively, the processing unit 221 may use the result of the search to 1) generate information indicating whether the received character is a smoothing character. Also, when the received character is a smearing character, the processing unit 221 can generate the attribute of the smearing (for example, the smearing name) and the smear warning message using the result of the search .

In step 340, the server 120 may transmit to the client 110 information indicating whether the character received by the user is a smiley character, in response to a request for information query. Alternatively, when the result of the search does not exist, the server 120 transmits, as a response to the inquiry request for information, information indicating that the character received by the user can not be known as a smearing character, May send information to the client 110 indicating that it has never been reported as a smoothing character.

For example, when the user queries information about the character received or the application installed by the user, the result of the inquiry indicates that the received character is a smoothing character, a safe character, or an unidentified character And may indicate that the application is a secure application.

For example, the response to a request for information retrieval may indicate either yes or no.

In step 340, the client 110 may use the transmitted response to provide the user with information indicating whether the character received by the user is a smearing character. In addition, if the character received by the user is a smearing character, the client 110 may output the smearing attribute and the smearing warning message using the transmitted response.

According to the above-described process, the server 120 can provide the result of the inquiry to the user using the registered information on the already known smearing character or the malicious application. However, for sms characters and malicious applications not yet registered at the time of inquiry, information about sms characters and malicious applications becomes available only after some victims have occurred. Accordingly, the user may be subjected to smsing or phishing by a smsy character or a malicious application, and after the information about smsing or phishing is registered in the server 120, the user must re-query the character or application again It is possible to confirm that the attack was attacked by smashing or phishing.

In addition, the user can not be sure whether a character or an application is safe or can attack, so he can prepare for an attack and continue to have an unstable state. Therefore, the inquiry of the user's information about the character or the application can be repeated, and the user's unstable state may not be solved even by repeated inquiry.

To solve this problem, even after the result of inquiry of the information of the character or the application is provided to the user, the server 120 immediately obtains the result of the inquiry through the feedback by acquiring new information related to the character or application . The feedback allows the user to prevent attacks such as smashing or phishing, and relieves anxiety due to concerns about the safety of characters or applications.

In the following, the configuration required to provide feedback in relation to smoothing characters is described.

In step 350, the processing unit 221 may determine whether feedback is necessary as to whether the character received by the user is a smearing character.

For example, when the search result does not exist, or when the search result indicates that the character received by the user is not a smiley character, the processing unit 221 may determine that the feedback is necessary.

For example, if the result of the search exists, or if the result of the search indicates that the character received by the user is a smearing character, or if the application indicates that it is a malicious application, , It can be determined that feedback is not required.

If it is determined that feedback is needed, then at step 360, the processing unit 221 may store the data required for feedback in the feedback database 530.

Will be described in detail below with reference to Fig. 7 in connection with the feedback database 530. [

For example, information about a request for an inquiry may include a character received by the user. Alternatively, the information about the inquiry request may include a hash value of the character received by the user. In addition, the information on the inquiry request may include a part of the character received by the user or a hash value of the above part. A part of the characters received by the user may be a part indicating the URL among the characters received by the user.

Next, with reference to Fig. 6, a method of providing feedback on smoothing characters will be described.

Figure 6 illustrates a method for providing feedback on smearing characters according to an example.

At step 370, the server 120 may be added to the smearing information database 520 with new smearing information as information related to the request for an inquiry. In Fig. 6, it is shown that new smearing information is input by the manager of the server 120. [

The new smoothing information may include a smoothing name, a smoothing string, a smoothing URL, a smoothing phone number, a smoothing alert message, and application information. The application information may include an application name, a hash value for application identification, and the like.

When the new smearing information is added, a new smearing information notification can be transmitted to the processing unit 221 of the server 120. [ According to the notification, the processing unit 221 of the server 120 can confirm that the new smearing information is added.

When the new smoothing information is added, the processing unit 221 can determine the user to which the feedback will be given in relation to the new smoothing information. In order to determine the user to which the feedback is to be provided, the processing unit 221 may search the feedback database 530 for the user to whom the feedback is to be provided in relation to the new smoothing information. The feedback database 530 may send user information for the user to be fed back to the processing unit 221 as a result of the user's search.

The user to whom feedback is to be provided may be determined through matching between the new smoothing information and the data required for feedback. The matching may be performed by the processing unit 221 or the feedback database 530. For example, the feedback database 530 may provide the data required for feedback to the processing unit 221, and the processing unit 221 may use the new smoothing information and the data required for the feedback to provide feedback The user can be determined.

For example, if at least one of the smoothing character string, the smoothing URL, and the smoothing phone number of the new smoothing information is present in the received character, it can be determined that the new smoothing information and the character match. Also, the user who received the matched character can be determined as the user to whom the feedback will be provided.

At step 380, the processing unit 221 may use the new smearing information and user information to generate additional results as to whether the received character is a smearing character.

Additional results may include: 1) the date and time of the request for information retrieval; and 2) information indicating whether the received character is a smiley character. In addition, if the received character is a smearing character, the result of the search may include 3) an attribute of the smearing (e.g., smearing name), and 4) a smearing warning message.

The following text may indicate a smsing warning message when it is determined that the character received by the user is a smoothing character.

xx Month xx day The letter "zzzzzz" viewed at xx was determined as smsing information. Do not open links within characters.

At step 390, the server 120 may provide the generated feedback to the user. The server 120 may provide the generated feedback to the client 110 or other device associated with the user of the client 110.

Figure 7 illustrates information stored in a feedback database according to an example.

The feedback database 530 may store 1) user information, 2) inquiry request, 3) inquiry time, and 4) information indicating whether or not to process.

The user information may be information for providing feedback to the user. For example, the user information may include a user identifier and a user telephone number.

Also, in terms of privacy protection, the user information may include user identification information (e.g., an identifier in the push server 400) corresponding to the user, rather than direct information (e.g., a user's telephone number) A user identifier used by the server 120, and the like).

The inquiry request information may be information that is included in the request when the inquiry of the user's information is requested. The inquiry request information may be information stored in step 360. [

For example, the inquiry request information may include a hash value of the user identifier and a hash value of the user telephone number.

For example, the inquiry request information may include information about the inquiry target. The inquiry request information may include a hash value of a character or character received by the user, a URL, and application information. The application information may include an application name and an application hash value.

The lookup time may indicate the time at which a request for information query was sent to the server 120. When the server 120 acquires new information based on the inquiry time, it can determine which request is to be provided with priority feedback. For example, the server 120 may set a reference time, and may preferentially process the provision of the feedback for the requested query within the set reference time. When searching for the whole of the feedback database 530, there may arise a problem that the search takes a long time. By using the lookup time and the reference time, this problem can be solved.

The information indicating whether or not the processing is performed may be information for preventing additional retrieval from being performed for the already processed request. For example, if feedback is made, the server 120 may delete the data associated with the feedback in the feedback database 530. Alternatively, the server 120 may cause the information indicating whether or not processing to be performed to indicate the completion of the search so that the request already provided with the feedback is not further considered.

The apparatus described above may be implemented as a hardware component, a software component, and / or a combination of hardware components and software components. For example, the apparatus and components described in the embodiments may be implemented within a computer system, such as, for example, a processor, a controller, an arithmetic logic unit (ALU), a digital signal processor, a microcomputer, a field programmable array (FPA) A programmable logic unit (PLU), a microprocessor, or any other device capable of executing and responding to instructions. The processing device may execute an operating system (OS) and one or more software applications running on the operating system. The processing device may also access, store, manipulate, process, and generate data in response to execution of the software. For ease of understanding, the processing apparatus may be described as being used singly, but those skilled in the art will recognize that the processing apparatus may have a plurality of processing elements and / As shown in FIG. For example, the processing unit may comprise a plurality of processors or one processor and one controller. Other processing configurations are also possible, such as a parallel processor.

The software may include a computer program, code, instructions, or a combination of one or more of the foregoing, and may be configured to configure the processing device to operate as desired or to process it collectively or collectively Device can be commanded. The software and / or data may be in the form of any type of machine, component, physical device, virtual equipment, computer storage media, or device , Or may be permanently or temporarily embodied in a transmitted signal wave. The software may be distributed over a networked computer system and stored or executed in a distributed manner. The software and data may be stored on one or more computer readable recording media.

The method according to an embodiment may be implemented in the form of a program command that can be executed through various computer means and recorded in a computer-readable medium. The computer-readable medium may include program instructions, data files, data structures, and the like, alone or in combination. The program instructions to be recorded on the medium may be those specially designed and configured for the embodiments or may be available to those skilled in the art of computer software. Examples of computer-readable media include magnetic media such as hard disks, floppy disks and magnetic tape; optical media such as CD-ROMs and DVDs; magnetic media such as floppy disks; Magneto-optical media, and hardware devices specifically configured to store and execute program instructions such as ROM, RAM, flash memory, and the like. Examples of program instructions include machine language code such as those produced by a compiler, as well as high-level language code that can be executed by a computer using an interpreter or the like. The hardware devices described above may be configured to operate as one or more software modules to perform the operations of the embodiments, and vice versa.

 While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it is to be understood that the invention is not limited to the disclosed exemplary embodiments. For example, it is to be understood that the techniques described may be performed in a different order than the described methods, and / or that components of the described systems, structures, devices, circuits, Lt; / RTI > or equivalents, even if it is replaced or replaced.

100: Information retrieval system
110: Client
120: Server
130: Database

Claims (15)

Performed by the server,
Receiving a request for an inquiry of information from a client;
Sending a response to the request to the client;
Determining whether feedback is required for the request
Storing the data required for the feedback on the request;
Obtaining data related to the information for which the inquiry is requested;
Generating additional results for the query using data related to the information; And
Providing the feedback comprising the additional result to the client or other device associated with the user of the client
Lt; / RTI >
Generating the additional result and providing the feedback are performed when it is determined that the feedback is needed,
If there is no result of the inquiry, it is determined that the feedback is necessary for the request, and if there is a result of the inquiry, feedback is provided to the inquiry that the feedback is not required for the request Way. The method according to claim 1,
The step of performing the inquiry
Further comprising:
Wherein the response provides feedback on an information query comprising a result of the query. 3. The method of claim 2,
And if the result of the query is not present, the response provides feedback for an information query indicating that the result does not exist. delete delete Performed by the server,
Receiving a request for an inquiry of information from a client;
Sending a response to the request to the client;
Determining whether feedback is required for the request
Storing the data required for the feedback on the request;
Obtaining data related to the information for which the inquiry is requested;
Generating additional results for the query using data related to the information; And
Providing the feedback comprising the additional result to the client or other device associated with the user of the client
Lt; / RTI >
Generating the additional result and providing the feedback are performed when it is determined that the feedback is needed,
And if the information relates to phishing or spamming, providing feedback for an information query that is determined to require the feedback for the request. Performed by the server,
Receiving a request for an inquiry of information from a client;
Sending a response to the request to the client;
Determining whether feedback is required for the request
Storing the data required for the feedback on the request;
Obtaining data related to the information for which the inquiry is requested;
Generating additional results for the query using data related to the information; And
Providing the feedback comprising the additional result to the client or other device associated with the user of the client
Lt; / RTI >
Generating the additional result and providing the feedback are performed when it is determined that the feedback is needed,
And providing feedback to the information inquiry that the feedback is determined to be necessary for the request when the users having the predetermined reference value or more commonly request the inquiry of the information. The method according to claim 1,
And if the request explicitly requests the feedback, feedback is provided for an information query determined that the feedback is needed for the request. Performed by the server,
Receiving a request for an inquiry of information from a client;
Sending a response to the request to the client;
Storing data required for feedback on the request;
Obtaining data related to the information for which the inquiry is requested;
Generating additional results for the query using data related to the information; And
Providing the feedback comprising the additional result to the client or other device associated with the user of the client
Lt; / RTI >
Wherein the data required for the feedback provides feedback for an information query comprising data required to identify the client in the network. Performed by the server,
Receiving a request for an inquiry of information from a client;
Sending a response to the request to the client;
Storing data required for feedback on the request;
Obtaining data related to the information for which the inquiry is requested;
Generating additional results for the query using data related to the information; And
Providing the feedback comprising the additional result to the client or other device associated with the user of the client
Lt; / RTI >
Wherein providing the feedback comprises:
Sending a push request of the feedback to a push server
Lt; / RTI >
Wherein the feedback provides feedback for an information query sent to the client or the other device via the push server. 11. The method of claim 10,
Wherein the feedback provides feedback on information inquiry sent to the client or the other device via a service provided by the push server. 12. The method of claim 11,
Wherein the service provided by the push server provides feedback to the information query different from the service the server uses to provide the response to the client. Performed by the server,
Receiving a request for an inquiry of information from a client;
Sending a response to the request to the client;
Storing data required for feedback on the request;
Obtaining data related to the information for which the inquiry is requested;
Generating additional results for the query using data related to the information; And
Providing the feedback comprising the additional result to the client or other device associated with the user of the client
Lt; / RTI >
Wherein the server provides feedback to an information inquiry that provides the user with the feedback related to the information in the future, even if the result of the inquiry does not exist at the time of the request. Performed by the server,
Receiving a request for an inquiry of information from a client;
Sending a response to the request to the client;
Storing data required for feedback on the request;
Obtaining data related to the information for which the inquiry is requested;
Generating additional results for the query using data related to the information; And
Providing the feedback comprising the additional result to the client or other device associated with the user of the client
Lt; / RTI >
Wherein the object of inquiry provides feedback on information retrieval, the character received by the user or an application installed by the user. A communication unit for receiving a request for inquiring information from a client and transmitting a response to the request to the client; And
A processor for storing data required for feedback on the request, obtaining data related to the information for which the query is requested, and generating additional results for the query using data related to the information
Lt; / RTI >
The communication unit provides the feedback on the information inquiry to provide feedback including the additional result to the client or another device associated with the user of the client,
Wherein the data required for the feedback comprises data required to identify the client in the network.
KR1020160007212A 2015-08-20 2016-01-20 Method and apparatus of providing feedback for information searching KR101790566B1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
KR20150117355 2015-08-20
KR1020150117355 2015-08-20

Publications (2)

Publication Number Publication Date
KR20170022840A KR20170022840A (en) 2017-03-02
KR101790566B1 true KR101790566B1 (en) 2017-10-27

Family

ID=58426573

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020160007212A KR101790566B1 (en) 2015-08-20 2016-01-20 Method and apparatus of providing feedback for information searching

Country Status (1)

Country Link
KR (1) KR101790566B1 (en)

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120203770A1 (en) 2010-09-30 2012-08-09 International Business Machines Corporation Iterative refinement of search results based on user feedback
KR101318562B1 (en) * 2012-06-15 2013-10-16 김근진 System and method for providing information for entering school, and recording medium thereof

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120203770A1 (en) 2010-09-30 2012-08-09 International Business Machines Corporation Iterative refinement of search results based on user feedback
KR101318562B1 (en) * 2012-06-15 2013-10-16 김근진 System and method for providing information for entering school, and recording medium thereof

Also Published As

Publication number Publication date
KR20170022840A (en) 2017-03-02

Similar Documents

Publication Publication Date Title
US11394805B1 (en) Automatic discovery of API information
US11924251B2 (en) System and method for cybersecurity reconnaissance, analysis, and score generation using distributed systems
US11323472B2 (en) Identifying automated responses to security threats based on obtained communication interactions
WO2018113594A1 (en) Method and device for defending dns attack and storage medium
CN109643358B (en) Cross-tenant data leakage isolation
US9628442B2 (en) DNS snooping to create IP address-based trust database used to select deep packet inspection and storage of IP packets
US9094338B2 (en) Attributes of captured objects in a capture system
US9454673B1 (en) Searchable encryption for cloud storage
US8495737B2 (en) Systems and methods for detecting email spam and variants thereof
EP3871392B1 (en) Network security system with enhanced traffic analysis based on feedback loop
US9197419B1 (en) Security system for data stored in the cloud
US8978137B2 (en) Method and apparatus for retroactively detecting malicious or otherwise undesirable software
EP3170091B1 (en) Method and server of remote information query
US10003574B1 (en) Probabilistic duplicate detection
US10536456B2 (en) Method and system for identifying user information in social network
US20110276709A1 (en) Locational Tagging in a Capture System
US9225720B1 (en) Security system for data stored in the cloud
US11178160B2 (en) Detecting and mitigating leaked cloud authorization keys
JP6340358B2 (en) Information leakage prevention system and method
US9641543B2 (en) Systems and methods for securing remote configuration
WO2016169212A1 (en) File management method and device
KR101790566B1 (en) Method and apparatus of providing feedback for information searching
CN111444445A (en) Data transmission method, system, computer equipment and readable storage medium
CN107667518B (en) Automatic discovery and online of electronic devices
US20140366084A1 (en) Management system, management method, and non-transitory storage medium

Legal Events

Date Code Title Description
A201 Request for examination
E902 Notification of reason for refusal
E701 Decision to grant or registration of patent right
N231 Notification of change of applicant
GRNT Written decision to grant