Abstract: Provided is a design method for sharing a profile in a container environment, including: extracting a sensitive context defined as information related to system-based access control or a sandboxing policy and an insensitive context defined as information unrelated to security for a profile provided by a developer; extracting the sensitive context and the insensitive context for the profile provided by a host; fetching a max configuration for the sensitive and insensitive contexts from each image layer of the developer; and generating a final profile that is applied to deploy the container by merging the host profile with the max configuration fetched from the developer profile. Accordingly, it is possible to provide an optimal environment to developers and hosts by generating the final profile with a hierarchical model using the host profile and the developer profile.

Abstract: Provided is a hybrid trusted execution environment based android security framework, an android device equipped with the same and a method of executing a trusted service in the android device. The hybrid trusted execution environment based android security framework includes a hardware resource that comprises a rich execution environment (REE) where an android operating system (OS) runs, and a secure container which implements a virtualized trusted execution environment (VTEE) that processes a security task in the rich execution environment (REE) when an application running on the rich execution environment requests the security task.

Abstract: Provided is a design method for sharing a profile in a container environment, including: extracting a sensitive context defined as information related to system-based access control or a sandboxing policy and an insensitive context defined as information unrelated to security for a profile provided by a developer; extracting the sensitive context and the insensitive context for the profile provided by a host; fetching a max configuration for the sensitive and insensitive contexts from each image layer of the developer; and generating a final profile that is applied to deploy the container by merging the host profile with the max configuration fetched from the developer profile. Accordingly, it is possible to provide an optimal environment to developers and hosts by generating the final profile with a hierarchical model using the host profile and the developer profile.

Abstract: Provided is a secure container construction device and method executable by an Android application, and a computer-readable recording medium on which a program thereof is recorded, the device and the method being capable of summoning a container at an application level without root privilege while showing performance that is faster than that of a conventional secure container technology, and thus can be implemented without invading an Android framework.

Abstract: Provided is a software packaging device, which sets an initial environment, migrates software information used by a target software to the initial environment, collects hardware information from an operation system at which the software is installed, applies the hardware information to the initial environment, and generates a software package from the initial environment to which the software information and the hardware information are applied.

Abstract: Provided is a hybrid trusted execution environment based android security framework, an android device equipped with the same and a method of executing a trusted service in the android device. The hybrid trusted execution environment based android security framework includes a hardware resource that comprises a rich execution environment (REE) where an android operating system (OS) runs, and a secure container which implements a virtualized trusted execution environment (VTEE) that processes a security task in the rich execution environment (REE) when an application running on the rich execution environment requests the security task.

Abstract: Provided is a hybrid trusted execution environment based android security framework, an android device equipped with the same and a method of executing a trusted service in the android device. The hybrid trusted execution environment based android security framework includes a hardware resource that comprises a rich execution environment (REE) where an android operating system (OS) runs, and a secure container which implements a virtualized trusted execution environment (VTEE) that processes a security task in the rich execution environment (REE) when an application running on the rich execution environment requests the security task.

Abstract: Provided is an adaptive dynamic analysis method, an adaptive dynamic analysis platform and a device equipped with the same. The adaptive dynamic analysis method for an application running in a container environment of a Linux host includes stopping execution of a first activity of the application, and acquiring analysis information for malicious code diagnosis of the application, conducting dynamic analysis using the analysis information, acquiring environment information to execute a second activity based on the dynamic analysis, and performing an execution environment update of the application by reflecting the environment information, and executing the application to enable the second activity to run.

Abstract: A mobile device having a system for analyzing malicious code is provided. The mobile device includes a container agent generating at least one Android container executing Android malicious code for dynamic analysis in response to a request received from a cloud controller and checking a state of the at least one Android container, a Linux host, a hardware module containing an operating system (OS) for the Linux host, and an analysis agent detecting a problem occurring upon an operation of the Android malicious code in the at least one Android container through the Linux host, and transmitting information of kernel-related malicious code behavior to an analysis server.

Abstract: Provided is a hybrid trusted execution environment based android security framework, an android device equipped with the same and a method of executing a trusted service in the android device. The hybrid trusted execution environment based android security framework includes a hardware resource that comprises a rich execution environment (REE) where an android operating system (OS) runs, and a secure container which implements a virtualized trusted execution environment (VTEE) that processes a security task in the rich execution environment (REE) when an application running on the rich execution environment requests the security task.

Abstract: Systems and methods for substrate wafer back side and edge cross section seals. In accordance with a first method embodiment, a silicon wafer of a first conductivity type is accessed. An epitaxial layer of the first conductivity type is grown on a front surface of the silicon wafer. The epitaxial layer is implanted to form a region of an opposite conductivity type. The growing and implanting are repeated to form a vertical column of the opposite conductivity type. The wafer may also be implanted to form a region of the opposite conductivity type vertically aligned with the vertical column.

Abstract: A duo operating system (OS) for Android security is provided. The duo operating system includes an Android kernel providing drivers for a hardware and an interface of a mobile device, a security platform storing a security key of an integrity check when a kernel is booted in a Linux space, a first layer containing a Linux-based operating system executing a mobile device monitoring and a mobile device security examination, and a second layer containing one or more container-based Android operating systems being a user space layer interacting with users through Android applications.

Abstract: Provided is an adaptive dynamic analysis method, an adaptive dynamic analysis platform and a device equipped with the same. The adaptive dynamic analysis method for an application running in a container environment of a Linux host includes stopping execution of a first activity of the application, and acquiring analysis information for malicious code diagnosis of the application, conducting dynamic analysis using the analysis information, acquiring environment information to execute a second activity based on the dynamic analysis, and performing an execution environment update of the application by reflecting the environment information, and executing the application to enable the second activity to run.

Abstract: A mobile device having a system for analyzing malicious code is provided. The mobile device includes a container agent generating at least one Android container executing Android malicious code for dynamic analysis in response to a request received from a cloud controller and checking a state of the at least one Android container, a Linux host, a hardware module containing an operating system (OS) for the Linux host, and an analysis agent detecting a problem occurring upon an operation of the Android malicious code in the at least one Android container through the Linux host, and transmitting information of kernel-related malicious code behavior to an analysis server.

Abstract: A duo operating system (OS) for Android security is provided. The duo operating system includes an Android kernel providing drivers for a hardware and an interface of a mobile device, a security platform storing a security key of an integrity check when a kernel is booted in a Linux space, a first layer containing a Linux-based operating system executing a mobile device monitoring and a mobile device security examination, and a second layer containing one or more container-based Android operating systems being a user space layer interacting with users through Android applications.

Abstract: Ultra-low drain-source resistance power MOSFET. In accordance with an embodiment of the preset invention, a semiconductor device comprises a plurality of trench power MOSFETs. The plurality of trench power MOSFETs is formed in a second epitaxial layer. The second epitaxial layer is formed adjacent and contiguous to a first epitaxial layer. The first epitaxial layer is formed adjacent and contiguous to a substrate highly doped with red Phosphorus. The novel red Phosphorus doped substrate enables a desirable low drain-source resistance.

Abstract: Systems and methods for narrow semiconductor trench structures. In a first method embodiment, a method for forming a narrow trench comprises forming a first layer of insulating material on a substrate and creating a trench through the first layer of insulating material and into the substrate. A second insulating material is formed on the first layer and on exposed portions of the trench and the second insulating material is removed from the first layer of insulating material and the bottom of the trench. The trench is filled with an epitaxial material and the first layer of insulating material is removed. A narrow trench is formed by the removal of remaining portions of the second insulating material.

Abstract: Methods of fabricating a super junction trench power MOSFET (metal oxide semiconductor field effect transistor) device are described. A column of p-type dopant in the super junction is separated from a first column of n-type dopant by a first column of oxide and from a second column of n-type dopant by a second column of oxide. In an n-channel device, a gate element for the FET is advantageously situated over the column of p-type dopant; and in a p-channel device, a gate element for the FET is advantageously situated over the column of n-type dopant.

Abstract: High mobility P-channel power metal oxide semiconductor field effect transistors. In accordance with an embodiment of the present invention, a power MOSFET is fabricated such that the holes flow in an inversion/accumulation channel, which is along the (110) crystalline plane, or equivalents, and the current flow is in the [110] direction, or equivalents, when a negative potential is applied to the gate with respect to the source. The enhanced channel mobility of holes leads to a reduction of the channel portion of the on-state resistance, thereby advantageously reducing total “on”resistance of the device.

Abstract: High mobility P-channel power metal oxide semiconductor field effect transistors. In accordance with an embodiment of the present invention, a power MOSFET is fabricated such that the holes flow in an inversion/accumulation channel, which is along the (110) crystalline plane, or equivalents, and the current flow is in the [110] direction, or equivalents, when a negative potential is applied to the gate with respect to the source. The enhanced channel mobility of holes leads to a reduction of the channel portion of the on-state resistance, thereby advantageously reducing total “on” resistance of the device.