Abstract: A security system for software to be input to a closed internal network includes: a kiosk including a registration module configured to read the stored software of a connected portable storage medium, a vaccine module configured to detect malicious code in the software, and an authentication module configured to set inspection authentication for the portable storage medium whose software has been inspected for malicious code; and a client including a check module configured to check the portable storage medium for inspection authentication and authorize the execution of the stored software.

Abstract: A network-based document protection system for the protection of business secret includes: a template module configured to search for the template information of a template stored in a template database (DB) or the document information of a document stored in a document DB, and to execute the corresponding template or document via a dedicated application; an authentication module configured to generate the document information by including the identification code of an operator in the corresponding template information or to identify a corresponding operator by recognizing an identification code from the document information of the executed document, according to the execution procedure of the template module; and a security module configured to store the document, generated or updated via the dedicated application, in the document DB, and to perform security processing on the document.

Abstract: A method and system for securely transmitting a file via a remote browser, where method includes: a first step of connecting to a client web browser accessing a designated Internet Protocol (IP) address, and setting a relay environment between a service server of the designated IP address and a client terminal; a second step of constructing a sandbox with respect to the client web browser, and executing a web page constructed in the website of the service server in the sandbox; a third step of extracting the rendering screen of the web page from the sandbox, and transmitting rendering screen information so that the rendering screen is displayed on the client web browser; and a fourth step of receiving first input information about the rendering screen information from the sandbox, and generating and transmitting second input information corresponding to the first input information.

Abstract: A system and method for tracking the path of an electronic document are provided. The system includes: a log information update unit including: a unique ID generation module configured to, when first electronic document data being loaded in an operating system-based word processor unit is newly created as second electronic document data due to a change in the storage location or name thereof, newly generate a unique ID for the second electronic document data and modify the unique ID of the first electronic document data to a parent ID; and a log information update module configured to generate or update a storage path as log information, and to include the log information in the second electronic document data; and a path tracking unit configured to search for the log information and to identify an execution history from the found log information.

Abstract: A hidden information-based security system includes a security agent. The security agent includes: a hidden information module configured to search for custom.xml by analyzing the source code of electronic document data executed by an operating system-based word processor unit, and to identify authority information; a content execution module configured to control the content execution of the electronic document data by the word processor unit according to the control of a security module; and the security module configured to generate hidden information, in which a security agent-dedicated fmtID is designated, by hiding custom.xml, in which authority information for security of electronic document data is configured, at a specific location in source code of the corresponding electronic document data by using a steganographic technique, and to compare the authority information with reference information and restrict an allowable range of content.

Abstract: A security system for software to be input to a closed internal network includes: a kiosk including a registration module configured to read the stored software of a connected portable storage medium, a vaccine module configured to detect malicious code in the software, and an authentication module configured to set inspection authentication for the portable storage medium whose software has been inspected for malicious code; and a client including a check module configured to check the portable storage medium for inspection authentication and authorize the execution of the stored software.

Abstract: Provided is a system and method for disarming an encrypted attachment file of an e-mail. The system includes: a disarming server including: a mail processing module configured to process the transmission and reception of mail data; an attachment file processing module configured to determine and classify whether or not an attachment file is present in the mail data, to determine whether or not the attachment file has been encrypted, and to transmit a decryption code query message; a decryption module configured to decrypt an encrypted attachment file based on the decryption code; and a disarming module configured to disarm one or more selected from a mail body file and attachment file of the mail data, to reconstruct disarmed mail data, and to transfer the disarmed mail data to the mail processing module; and a mail checking module installed in a reception terminal to output the disarmed mail data.

Abstract: A method and system for checking the malware infection of a macro included in a document file, includes: a first checking step of checking, by a macro detection module operating in conjunction with the operating system (OS) of a computer OS, a document file input to an input processor; an extraction step of searching for and extracting, by the macro detection module, a macro function included in the document file based on malware information stored in a code information storage unit; a detection step of detecting, by the macro detection module, malware of the extracted macro function; and a function setting step of changing, by a security processing module, the macro function, from which the malware has been detected, into a custom function.

Abstract: Provided is a system which can integrate and manage data, and more specifically to a data distribution-type integrated management system which can integrate and manage data without being equipped with a DBMS and a web server for the management of a large amount of data and can enhance the security performance of data. The data distribution-type integrated management system includes: a plurality of storage servers which separates and individually stores two or more types of information selected from among content information, attribute information, and version information which shared data includes; an execution management server which connects a execution module of a logged-in user terminal to the storage servers; and a search server which searches the storage servers for the corresponding shared data in response to a request from the user terminal.

Abstract: A network-based document protection system for the protection of business secret includes: a template module configured to search for the template information of a template stored in a template database (DB) or the document information of a document stored in a document DB, and to execute the corresponding template or document via a dedicated application; an authentication module configured to generate the document information by including the identification code of an operator in the corresponding template information or to identify a corresponding operator by recognizing an identification code from the document information of the executed document, according to the execution procedure of the template module; and a security module configured to store the document, generated or updated via the dedicated application, in the document DB, and to perform security processing on the document.

Abstract: Provided is a method and system for checking a malicious hyperlink address in an e-mail body, which identify a hyperlink address appearing in an e-mail body, check whether the hyperlink address is malicious, and prevent an e-mail recipient from accessing a malicious website through the hyperlink address. The system for checking a malicious hyperlink in an e-mail body includes: an address DB which stores one or more of a hyperlink address and recipient information and a substitute address; a recipient DB which stores the identification information of a recipient and website address information related to whether access has been approved input by the recipient; a hyperlink address substitution module which extracts a hyperlink address, and substitutes the hyperlink address with a substitute address; a hyperlink address checking module; a checking information notification module; and an access management module.

Abstract: The present invention relates to an approval system in a network for data security. The approval system includes a management server (10), a plurality of client terminals (30, 30? end 30?), having first and second client terminals, and a file server (20). The first client terminal includes a first approval module for outputting a first window that enables a first user to input a request for viewing an arbitrary document, and transmitting data input by the first user to the management server. The second client terminal includes a second approval module for outputting a second window. The management server includes an approval agent module for mediating communication of the data and the approval data between the first approval module and the second approval module, and for opening the arbitrary document to the first client terminal when the approval data contains information indicating allowance for viewing of the document.

Abstract: Disclosed herein is a control system. The control server includes a management server, a plurality of client terminals configured to includes first and second client terminals and communicate with the management server, and a file server configured to store documents shared by the first and second client terminals. Each of the first and second client terminals includes an external device recognition module that reads codes of external devices that are communicably connected to or separated from the first or second client terminal. The management server includes an external device DB that stores the codes of the external devices, and an external device verification module that searches the external device DB for information about a code, and performs control so that a document stored in the file server is stored in an external device and is then transferred from the file server if the information about the code is found to exist.

Abstract: A system for controlling access to a file server is disclosed. The system for controlling access to a file server includes a management server, a plurality of client terminals for communicating with the management server, and a file server for storing one or more documents shared by the plurality of client terminals. Each of the client terminals includes a file server access module for verifying a user, and a security explorer tool driving module for outputting one or more documents stored in the file server. The management server includes an authorized user information database for storing authentication information, a user verification module for checking user information and searching for authentication information, and a document classification module for searching the file server for documents within the authorization limits based on the user, and transmitting the found documents to the security explorer tool driving module, thereby restricting documents depending on the users.