Method of network equipment invaded detection

A technology of intrusion detection and network equipment, which is applied in the field of communication network security, can solve the problems of high network resource consumption and high cost of intrusion detection methods, and achieve the effects of low resource consumption, rich security analysis strategies, and great flexibility

Inactive Publication Date: 2011-04-20
ZTE CORP
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0008] The purpose of the present invention is to solve the problems and deficiencies of the existing network device intrusion detection method with high cost and high network resource consumption, and provide a method for network device intrusion detection with low cost, low network resource consumption and easy implementation

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method of network equipment invaded detection
  • Method of network equipment invaded detection
  • Method of network equipment invaded detection

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0016] The technical features and functional features of the present invention will be further described below in conjunction with specific embodiments, with the purpose of better explaining the present invention, but not intended to limit the protection scope of the present invention.

[0017] see figure 2 , the present invention comprises the following steps:

[0018] 1. Intrusion detection; intrusion detection can be executed all the time, or it can be triggered under set conditions. For example, when abnormal traffic on a certain port is detected, execution starts.

[0019] 2. Data sniffing; the feature of this method is that all data flows cannot be sent to the control plane, but are filtered according to certain conditions (such as only collecting the flow of ports with specified abnormal flows, or subdividing them to collect abnormal ports The traffic of the specified IP address segment on the network), and part of the data flow is sent to the control plane for analy...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

This invention discloses an intrusion method for testing network devices including: 1, monitoring flows of the communication terminals to start the intrusion test flow when exceeding the set threshold value, 2, starting the extrusion flow to intercept a data packet by a detector according to the set condition to copy and send to a control plane to de-packet it, and matching the analysis result and the preset character library, then the control plane starts up a related safety strategy if the match exists, or enters into step 3 if it does not exist. 3, altering the detecting condition of the detector and re-intercepting data packets to de-packet and analyze them, and the control plane matches the analysis result and the preset character library to start up related safety strategy after determining the intrusion kind.

Description

technical field [0001] The invention relates to the technical field of communication network security, in particular to a method for detecting abnormal network flow by network equipment. Background technique [0002] With the continuous development of communication technology and network, security issues are becoming more and more prominent. The attacks of computer viruses and hackers not only cause the loss of information of the user host and the reduction of its availability, but also cause a significant increase in network traffic, or even blockage, affecting the normal communication of other users. The main goal of the service provider's network equipment is to identify abnormal traffic so that it does not affect network communication, and at the same time, take measures against other attacks that can be identified. The security of information is guaranteed by the user's host or the network, and network devices do not need to take measures against all attacks against th...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L12/56
Inventor 闫自凯
Owner ZTE CORP
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap