Abstract: Disclosed are a device for right managing web data, a recording medium for performing a method for right managing web data on a computer, and a device and a method for providing right management information. In the device for right managing web data, a message processing unit adds agent information, which shows support for right management, to the header of a web data request message that is sent to a web server from a web browser, and sends same to the web server, parses and outputs the right information included in the header of a web data reply message that is sent to the web browser from the web server, and sends web data that is included in the web data reply message to the web browser. Also, a right managing unit controls the output of web data, which is included in the web data reply message, through a web browser based on the parsed right information which is input from the message processing unit.

Abstract: Disclosed are an apparatus and a method for securing printing. The present invention performs a print security action with respect to outputted data in accordance with a printing policy, when a security pattern is included in the outputted data of an outputted product. According to the present invention, by performing the print security action with respect to the outputted data in accordance with the printing policy, when the security pattern is included in the outputted data, printing of personal information and similar which is included in the outputted data can be prevented.

Abstract: The present invention relates to an apparatus and a method for managing digital rights using virtualization technique, and more particularly to an apparatus and a method for enabling a user to access a desired text file in an independent area through a virtual machine corresponding to a licensed right for accessing the text file. The present invention comprises a virtual machine (VM) management unit for controlling a user access authorization function for accessing the text file in the area to which the virtualization technique is applied.

Abstract: A system and method of protecting digital media contents, which maintain compatibility with an existing system and block any attempt to illegally use the digital media contents having various formats, and which reduce a system load and maximize a possibility of reusing the digital media contents. The system includes a packager for analyzing a format of contents and encoding at least a portion of a data region located in a payload of the contents, and for generating encoded contents by inserting encoding information including at least one of an encoding key value and contents information into the contents; and a digital rights management (DRM) server for receiving a request for a license and the encoding information from an external device which receives the encoded contents, for confirming the encoding information and then generating a license which is used to decode the encoded contents, and for providing the generated license to the external device.

Abstract: Provided are a computing device provided with a DLL injection function and a DLL injection method. When receiving from an operating system notification of whether a target process corresponding to a program ordered by a user to be executed is created, a process creation module of an injection program executes a launcher process to create the target process as a child process of the launcher process and sets the target process to a suspend mode. A code insertion module receives allocation of a memory region where the target process is stacked, using a process handle of the target process, to insert a code for executing a DLL file to be injected into the target process. A restoration module cancels the suspend mode of the target process to allow the target process to be executed.

Abstract: There is provided a method and apparatus for displaying a watermark on a screen. According to the present invention, when an application is executed or a document is opened by a user's manipulation, it is determined whether a watermark is displayed based on a message generated from an operating system and screen watermark display policies, and when it is determined that the watermark is displayed, the watermark is displayed on a screen. According to the present invention, when the watermark is displayed on a screen, it is possible to provide a user with notification that corresponding content is important content or confidential content. Even when the screen is captured or is imaged using a camera, the watermark is displayed in the captured image or the imaged video. Therefore, it is possible to identify that the corresponding content is important content or confidential content. As a result, it is possible to increase user awareness of security.

Abstract: Provided are an application module injection device, a computing device including an application module injection function, and a recording medium that records a program for executing an application module injection method.

Abstract: Provided are a computing device provided with a DLL injection function and a DLL injection method. When receiving from an operating system notification of whether a target process corresponding to a program ordered by a user to be executed is created, a process creation module of an injection program executes a launcher process to create the target process as a child process of the launcher process and sets the target process to a suspend mode. A code insertion module receives allocation of a memory region where the target process is stacked, using a process handle of the target process, to insert a code for executing a DLL file to be injected into the target process. A restoration module cancels the suspend mode of the target process to allow the target process to be executed.

Abstract: Disclosed are a device for right managing web data, a recording medium for performing a method for right managing web data on a computer, and a device and a method for providing right management information. In the device for right managing web data, a message processing unit adds agent information, which shows support for right management, to the header of a web data request message that is sent to a web server from a web browser, and sends same to the web server, parses and outputs the right information included in the header of a web data reply message that is sent to the web browser from the web server, and sends web data that is included in the web data reply message to the web browser. Also, a right managing unit controls the output of web data, which is included in the web data reply message, through a web browser based on the parsed right information which is input from the message processing unit.

Abstract: Disclosed are a file-processing device for executing a pre-processed file, and a recording medium for executing a related file-processing method in a computer. Once a request for registry information corresponding to the extension of a file is inputted according to a request for the execution of the file selected by the user, a registry-converting unit outputs a preset substitute value instead of the registry default value for executing a connection program corresponding to the extension of the file as the result value for the registry information request. A control unit pre-processes the file through a control program set in correspondence to the substitute value. A file-executing unit executes the file by executing the connection program of the file corresponding to the registry default value after pre-processing.

Abstract: Disclosed are a malicious code real-time inspecting device in a DRM environment and a recording medium for recording a program to execute a method thereof. A DRM module performs decryption and encryption during file reading/writing operations through a handle after confirming user rights relating to a file on the basis of a handle of a file having DRM applied when an execute command is inputted, outputs an inspection request message including a handle and a path of a file, and determines whether to perform an open operation of a file according to a malicious code inspection result on a file. A malicious code inspecting module inspects whether an original file, which is to be decrypted and read by the DRM module, is infected by malicious code or not on the basis of a handle and a path of a file in an inspection request message delivered from an interface module. According to the present invention, whether a document encrypted with DRM applied is infected by malicious code is inspected and treated in real-time.

Abstract: Disclosed are a hook re-entry prevention device and a recording medium, in which a program for executing the method thereof in a computer is recorded thereon. A state information management module sets or releases a state information flag which indicates whether a hook function is called. If the state information flag is set when the hook function is called, a re-entry prevention module determines that the calling of the hook function has been conducted from the inside of a hook layer and returns a value to a system layer. According to the present invention, an entry/breakaway layer which is independent from the hook layer functions in such a manner that the hook layer is safely isolated from the hook, thereby preventing hook re-entry caused by the callback of an original function of a lower function while a hook routine within the hook layer is performed during a dynamic API hooking.

Abstract: A computer system includes a DRM client system in which a plurality of DRM clients are installed, comprising: a virtual OS managing unit that separates a kernel of an actual operating system installed in the DRM client system to generate and manage a virtual operating system; a branch process information managing unit that manages branch process information according to a type of a document that a user attempts to read; and an application program branching unit that analyzes the branch process information and executes DRM client agent for managing the DRM client in an actual OS region or a virtual OS region according to the type of a document that the user attempts to read to allow the user to read the document.

Abstract: Disclosed are a clipboard protection system in a DRM environment and a recording medium in which a program for executing the method in a computer is recorded. An identification information management unit changes first identification information of data, which is to be stored in a clipboard, into second identification information when data stored in the clipboard is requested by a reliable object, and outputs the second identification information corresponding to identification information of the reading target data if the reliable object requests extraction of the data stored in the clipboard. A data protection unit encodes the data, which is to be stored in the clipboard, and decodes the encoded data which is read from the clipboard.

Abstract: A system and method of protecting digital media contents, which maintain compatibility with an existing system and block any attempt to illegally use the digital media contents having various formats, and which reduce a system load and maximize a possibility of reusing the digital media contents. The system includes a packager for analyzing a format of contents and encoding at least a portion of a data region located in a payload of the contents, and for generating encoded contents by inserting encoding information including at least one of an encoding key value and contents information into the contents; and a digital rights management (DRM) server for receiving a request for a license and the encoding information from an external device which receives the encoded contents, for confirming the encoding information and then generating a license which is used to decode the encoded contents, and for providing the generated license to the external device.

Abstract: A user authentication method of authenticating a user on an on-line basis using a user's e-mail address and hardware information is provided. The user authentication method includes the steps of: transmitting a user's authentication client platform hardware information and e-mail address to an authentication server module through an authentication client module installed in the authentication client platform; and the authentication client module determining user authentication according to whether or not the e-mail address and hardware information received from the authentication server module is identical to user's e-mail address and hardware information stored in an authentication database. A user's authentication request and authentication is confirmed through an e-mail in the case that authentication fails in the primary authentication process. The user authentication method performs authentication by using a user's hardware information and e-mail address, their uniqueness of which is verified.