Unlock instant, AI-driven research and patent intelligence for your innovation.

Three stage progressive network attack characteristic extraction method based on sequence alignment

A network attack and feature extraction technology, applied in electrical components, transmission systems, etc., can solve the problems of reducing the anti-noise ability, increasing the false negative rate, inaccurate attack characteristics, etc. Effect

Inactive Publication Date: 2009-04-29
BEIHANG UNIV
View PDF0 Cites 3 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, since global sequence alignment takes all sequences as matching domains, and all similar parts are used as attack features, a large number of feature sequence fragments of non-attack features are introduced, which makes the false negative rate of the extracted attack features used for intrusion detection rapidly increase
The single pruning strategy also improves the convergence speed while reducing the anti-noise ability, making the extracted attack features inaccurate

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Three stage progressive network attack characteristic extraction method based on sequence alignment
  • Three stage progressive network attack characteristic extraction method based on sequence alignment
  • Three stage progressive network attack characteristic extraction method based on sequence alignment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0025] The present invention will be further described in detail below in conjunction with the accompanying drawings.

[0026] The present invention is a network attack feature extraction method based on sequence alignment. The network attack feature extraction method includes a first alignment unit 11, a second alignment unit 12, a third alignment unit 13, and a first pruning unit. 21. The second pruning unit 22; from a group of suspicious data packets Pkt to the output of the characteristic sequence AS that can be used for intrusion detection, it is arranged in sequence as the first alignment unit 11, the first pruning unit 21, and the second alignment unit. unit 12 , the second pruning unit 22 and the third matching unit 13 .

[0027] In the present invention, the first alignment unit 11 , the second alignment unit 12 and the third alignment unit 13 all use a local alignment-based two-sequence alignment algorithm (GASBSLA algorithm for short). The full English of the GASBS...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The present invention discloses a three-stage gradual network attack characteristic extracting method based on sequence alignment, wherein a three-stage gradual module is adopted for extracting full attack characteristic of suspected data packages. The network attack characteristic extracting according to the invention comprises a step of sequentially arranging a fist aligning unit (11), a first pruning unit (21), a second aligning unit (12), a second pruning unit (22) and a third aligning unit (13) between one group of suspected data package Pkt and an output characteristic sequence AS which can be used for attack detecting. The first aligning unit (11), the second aligning unit (12) and the third aligning unit (13) adopt a same GASBSLA algorithm for executing aligning procession. The method according to the invention adopts a partial sequence aligning conception and an affine gap penalty model for increasing the generalization degree of attack characteristic, compensates the problem of mutated attack detection difficulty caused by the generalization degree insufficiency of the extracted attack characteristic brought from the prior art using a global aligning conception and weight invariableness penalty model, and at the same time settles the problem of insufficient noise resistance in attack characteristic extracting in the prior art through periodically adopting a method without the pruning strategy.

Description

technical field [0001] The invention relates to a computer network security intrusion detection technology, in particular to a three-stage progressive network attack feature extraction method based on sequence matching. Background technique [0002] Web worms, viruses, and malicious programs are still the number one threat to Internet and enterprise security today, causing hundreds of millions of dollars in losses every year. Signature-based intrusion detection is currently the most effective method to deal with this problem, but the continuous emergence of new attacks and the appearance of deformation engines such as PHolyP make the existing intrusion detection technology be greatly challenged. In order to solve this problem, since 2003, the automatic extraction of attack features has attracted more and more researchers' attention, and has become a new hotspot in the research of intrusion detection technology. [0003] The attack feature extraction algorithms that have bee...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06
Inventor 夏春和李楠王海泉杨懿李肖坚
Owner BEIHANG UNIV
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com