Abstract: The present invention provides a method, a system, and a device for a hash generation and network traffic detection. It uses a method of storing intermediate calculation results to perform hash calculation for streaming data, and uses a matrix multiplication operation as a strong hash algorithm to reduce memory occupation. The present invention can generate hash in real time in the case of streaming data comprising defects, unordered, and overlapping, which is suitable for detecting files from network traffic, and is applicable to virus detection, intrusion detection, data anti-leakage, network content review, digital forensics, digital rights protection, and other fields.
Type:
Grant
Filed:
September 6, 2017
Date of Patent:
January 3, 2023
Assignee:
INSTITUTE OF INFORMATION ENGINEERING, CHINESE ACADEMY OF SCIENCES
Abstract: A multi-core processor based key protection method and system is described. An Operating System (OS) supporting Symmetric Multi-Processing (SMP) is set up on a multi-core processor. One core of the multi-core processor is configured as a cryptographic operation core, which is prohibited from running other processes of the OS and dedicated to perform a public-key cryptographic operation. The private key and an intermediate variable in a process of the public-key cryptographic operation are stored in a cache exclusively occupied by the cryptographic operation core.
Type:
Grant
Filed:
June 19, 2015
Date of Patent:
February 20, 2018
Assignees:
Data Assurance and Communication Security Center, Chinese Academy of Sciencess, Institute of Information Engineering, Chinese Academy of Sciences
Inventors:
Jingqiang Lin, Le Guan, Jing Wang, Qiongxiao Wang, Jiwu Jing, Bao Li
Abstract: The present invention discloses a method and a system for protecting root CA certificates in a virtualization environment. The method installs a root CA certificate security manager on a host computer. The root CA certificate security manager stores the lists of root CA certificates and provides certificate validation service to virtual machines via a read-only interface. When a virtual machine needs the verification of a certificate, it sends a certificate validation service request to the root CA security manager. The root CA certificate security manager provides certificate validation services to the virtual machine in response to the request.
Type:
Grant
Filed:
January 16, 2015
Date of Patent:
November 14, 2017
Assignees:
Institute of Information Engineering, Chinese Academy of Sciences, Data Assurance & Communications Security Center, Chinese Academy of Sciences
Inventors:
Jingqiang Lin, Jiwu Jing, Le Guan, Bingyu Li, Jing Wang, Wuqiong Pan, Yuewu Wang