Method and device for detecting worm virus and gateway equipment

A virus detection and worm technology, applied in the direction of data exchange network, digital transmission system, electrical components, etc., can solve the problems of low virus detection efficiency, large data processing volume, high virus false alarm rate, etc., and achieve high virus detection efficiency and high Virus detection efficiency and low false positive rate

Inactive Publication Date: 2010-05-12
HUAWEI DIGITAL TECH (CHENGDU) CO LTD
View PDF0 Cites 28 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] In the process of realizing the present invention, the inventor found that when detecting worms in the prior art, it is easy to misjudgment when the normal business traffic in the network changes frequently, resulting in a high false positive rate of the virus; meanwhile, the pr...

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device for detecting worm virus and gateway equipment
  • Method and device for detecting worm virus and gateway equipment
  • Method and device for detecting worm virus and gateway equipment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0027] The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

[0028] figure 1 It is a schematic flowchart of Embodiment 1 of the worm virus detection method of the present invention. The embodiment method of the present invention comprises:

[0029] Step 101, obtaining the scanning connection information initiated by the source IP address host, the scanning connection information including the number of scanning connections, the failure rate of scanning connections and the number of connections of scanning ports;

[00...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The embodiment of the invention relates to a method and a device for detecting a worm virus and gateway equipment. The method comprises the following steps: obtaining scanning connection information initiated by a source IP address host computer, wherein the scanning connection information comprises scanning connection times, a scanning connection failure rate and the connection number of scanning ports; and analyzing the obtained scanning connection information of the source IP address host computer in a preset period and judging whether the source IP address host computer is a host computer infected with the worm virus or not. By analyzing the scanning connection information, the technical scheme of the embodiment of the invention can effectively detect whether the source IP address host computer is the host computer infected with the worm virus or not, and has higher virus detection efficiency and lower virus detection misinformation rate.

Description

technical field [0001] The invention relates to the field of virus detection, in particular to a worm virus detection method, device and gateway equipment. Background technique [0002] With the rapid development of network technology, network security issues have become the focus of attention of users and operators, and worms are one of the most serious threats to network security. [0003] In the prior art, a method based on traffic information is usually used to detect worms, and the detection process is as follows: First, by collecting normal traffic logs and traffic logs when there are worm activities, the characteristics of the detected worms are extracted, and the traffic logs of the calibration category are obtained ; Secondly, use the machine learning algorithm to learn the traffic logs of the calibrated category to obtain a worm detection classifier; finally, deploy the worm detection classifier obtained through network learning to the network to extract the featur...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L12/26H04L12/24H04L29/06
Inventor 王金辉王丹峰
Owner HUAWEI DIGITAL TECH (CHENGDU) CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap