Title:
METHOD FOR DETECTING MALICIOUS TRAFFIC AND DEVICE THEREFOR
Document Type and Number:
WIPO Patent Application WO/2021/187782
Kind Code:
A1
Abstract:
A method for detecting malicious traffic and a device therefor are disclosed. If server certificate transmitted by a server during a handshake for the security connection between the server and a client is received, a detection device compares an issuer field with an owner field of the server certificate so as to identify whether the server certificate has been electronically signed by a third party, verifies the electronic signature on the basis of a public key of the third party, and, if the third party or a superordinate certificate authority of the third party is not a predefined trusted party, classifies the electronic signature as traffic from which a malicious code is generated.
Inventors:
YANG CHUL WOONG (KR)
YANG WOO SUK (KR)
LEE YUN SEOK (KR)
YANG WOO SUK (KR)
LEE YUN SEOK (KR)
Application Number:
PCT/KR2021/002792
Publication Date:
September 23, 2021
Filing Date:
March 08, 2021
Export Citation:
Assignee:
SOOSAN INT CO LTD (KR)
International Classes:
H04L29/06; H04L9/00; H04L9/32
Foreign References:
| KR20170125495A | 2017-11-15 | |||
| KR20180041840A | 2018-04-25 | |||
| KR20120136954A | 2012-12-20 | |||
| KR20110087826A | 2011-08-03 | |||
| KR20090054774A | 2009-06-01 |
Attorney, Agent or Firm:
Y.P.LEE, MOCK & PARTNERS (KR)
Download PDF: