Dynamic security module server device and method of operating same
First Claim
1. A dynamic security module server device comprising:
- a transmitter to transmit a dynamic security module to a user terminal over a network;
a receiver to receive a security management event from the user terminal over the network; and
a processor configured to;
create a security session with a security client of the user terminal;
designate a first set of parameters for the dynamic security module to be used during the security session;
change a code of the dynamic security module based on the first set of parameters;
transmit, to the security client of the user terminal, the dynamic security module to be used during the security session;
store the first set of parameters for the dynamic security module transmitted to the security client while the security session is being maintained;
receive the security management event from the user terminal, wherein the security management event includes a second set of parameters of the dynamic security module that is running on the security client of the user terminal;
verify whether the second set of parameters of the dynamic security module that is running on the security client of the user terminal match with the first set of parameters that are stored for the security session; and
in response to detecting that the second set of parameters is different from the first set of parameters, cause the user terminal to stop running of an application program,wherein the first and second sets of parameters include at least one of a function name, a variable that designates an algorithm to be executed, a protocol field, a variable that designates a protocol sequence, a variable that designates a compile level, or a variable that designates an executable code obfuscation method, andwherein the security session has a predetermined valid period after which part or all of the code of the dynamic security module is changed.
2 Assignments
0 Petitions
Accused Products
Abstract
Disclosed herein are a dynamic security module server device for transmitting a dynamic security module to a user terminal and receiving a security management event from the user terminal, and a method of operating the dynamic security module server device. The dynamic security module server device includes a communication unit configured to transmit and receive a security management event over a network, and a processor configured to control the communication unit. The processor is configured to create a security session with the security client of a user terminal, and to transmit a dynamic security module to the security client of the user terminal so that part or all of code performing security management in the security client of the user terminal in which the security session has been created has a predetermined valid period.
-
Citations
17 Claims
-
1. A dynamic security module server device comprising:
-
a transmitter to transmit a dynamic security module to a user terminal over a network; a receiver to receive a security management event from the user terminal over the network; and a processor configured to; create a security session with a security client of the user terminal; designate a first set of parameters for the dynamic security module to be used during the security session; change a code of the dynamic security module based on the first set of parameters; transmit, to the security client of the user terminal, the dynamic security module to be used during the security session; store the first set of parameters for the dynamic security module transmitted to the security client while the security session is being maintained; receive the security management event from the user terminal, wherein the security management event includes a second set of parameters of the dynamic security module that is running on the security client of the user terminal; verify whether the second set of parameters of the dynamic security module that is running on the security client of the user terminal match with the first set of parameters that are stored for the security session; and in response to detecting that the second set of parameters is different from the first set of parameters, cause the user terminal to stop running of an application program, wherein the first and second sets of parameters include at least one of a function name, a variable that designates an algorithm to be executed, a protocol field, a variable that designates a protocol sequence, a variable that designates a compile level, or a variable that designates an executable code obfuscation method, and wherein the security session has a predetermined valid period after which part or all of the code of the dynamic security module is changed. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method of operating a dynamic security module server device, the method comprising:
-
creating, with a processor, a security session with a security client of a user terminal; designating, by the processor, a first set of parameters for a dynamic security module to be used during the security session; changing, by the processor, a code of the dynamic security module based on the first set of parameters; transmitting, to the security client of the user terminal, the dynamic security module to be used during the security session; storing, by the processor, the first set of parameters for the dynamic security module transmitted to the security client while the security session is being maintained; receiving, from the user terminal, a security management event, wherein the security management event includes a second set of parameters of the dynamic security module that is running on the security client of the user terminal; verifying, by the processor, whether the second set of parameters of the dynamic security module that is running on the security client of the user terminal match with the first set of parameters that are stored for the security session; and in response to detecting that the second set of parameters is different from the first set of parameters, causing the user terminal to stop running of an application program, wherein the first and second sets of parameters include at least one of a function name, a variable that designates an algorithm to be executed, a protocol field, a variable that designates a protocol sequence, a variable that designates a compile level, or a variable that designates an executable code obfuscation method, and wherein the security session has a predetermined valid period after which part or all of the code of the dynamic security module is changed. - View Dependent Claims (12, 13, 14, 15, 16, 17)
-
Specification