Abstract: An automatic malignant code collecting system comprises a first database configured to store detection target website information, a virtual machine controller configured to read the website information from the first database and transmit the website information, a first virtual machine configured to periodically gain access to a website using the website information and to collect a malignant code and evidence thereof if an abnormal event occurs when the first virtual machine gains access to the website, a second virtual machine configured to periodically gain access to the same website as accessed by the first virtual machine using the website information received from the virtual machine controller and to collect a malignant code and evidence thereof if an abnormal event occurs when the second virtual machine gains access to the website, and a second database configured to store the malignant code and the evidence thereof collected by the first virtual machine and the second virtual machine.

Abstract: A pattern matching system for a network security device includes a pattern matching card configured to generate a pattern matching result by matching data of a received packet with a pre-stored pattern of a signature pattern table, and an analyzing engine configured to copy the packet and transfer the copied packet to the pattern matching card and configured to detect a bad traffic based on packet analysis information of the packet and the pattern matching result received from the pattern matching card. The analyzing engine is configured to detect a bad traffic based on a pattern matching result for a single packet and packet analysis information during a single-packet-based analysis and is configured to detect a bad traffic based on a pattern matching result for successive packets and packet analysis information during a multi-packet-based analysis.

Abstract: In a technique of isolating an infected mobile terminal, the disclosed embodiment relates to an apparatus for detecting and controlling an infected mobile terminal, in which the infected mobile terminal is detected from a communication network associated with a mobile communication network.

Abstract: A system for preventing normal user from being in network address translation(nat)-based web service and a method for controlling the same are disclosed. The system discriminates between an attacker PC and a normal user PC that use the same public IP address in the NAT network, blocks a Web-page request generated from the attacker PC, processes a Web-page request of a normal user PC, and makes an Internet service of the normal user PC possible.

Abstract: The present invention relates to a distributed packet processing system for high-speed networks and a distributed packet processing method using thereof, in which a FIFO-type packet processing engine having three packet processing steps is provided in plurality to process packet data in parallel in processing packets for high-speed networks, and, therefore, packet sequences are guaranteed, and packets can be further promptly process.