Eureka AIR delivers breakthrough ideas for toughest innovation challenges, trusted by R&D personnel around the world.

Dynamic load balancing method of network intrusion detection

A technology of network intrusion detection and dynamic load, which is applied in the field of network security, can solve the problem of not guaranteeing the sequence of messages, and achieve the effects of improving detection accuracy, avoiding complexity, and saving costs

Active Publication Date: 2010-06-09
SICHUAN CHANGHONG ELECTRIC CO LTD
View PDF0 Cites 18 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, the dynamic load distribution method usually does not guarantee the order of the packets. Therefore, the dynamic load distribution method should be used as much as possible for the packet load distribution. balance

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0046] The invention innovatively uses multiple processing cores of a multi-core network service processor to form a distributed processing cluster, and adopts a dynamic load balancing algorithm very suitable for engineering applications. Aiming at the unsequential disadvantage of load balancing, a method of protecting the integrity of data streams is combined with a load balancing algorithm to propose a network-based load balancing solution for real-time online data processing equipment, which has strong engineering practicability.

[0047] The integrity of data flow and the quality of load balancing algorithm are two main factors affecting the performance of intrusion detection system. The integrity of the data flow affects the accuracy of detection, and the data packets of the same session must be allocated to one detection engine. The quality of the load balancing algorithm affects the detection speed, so try to make each detection engine work under a less than full load s...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to the technical field of network safety and discloses a multi-detection engine load balancing method applied to a network intrusion defensive system. In the invention, a multi-kernel network service processor is used as a hardware basis, a plurality of processing kernels of the multi-kernel network service processor are used as detection engines, and load balancing among a plurality of kernels, the detection accuracy and the processing demands of gigabit processing line speed are ensured by utilizing a dynamic load balancing method based on a stream. The dynamic load balancing method of network intrusion detection comprises the following steps of updating and maintaining a detection engine real-time load table, sending a data package, updating and maintaining a data package sending table and balancing a load. Through concrete implementation of the steps, the integrity of the stream can be ensured so as to enable subsequent detection or other processing to be more accurate. The dynamic load balancing method is simultaneously adopted so as to enable the loading amounts of each processing engine to have equal distribution and fast response. The invention is particularly suitable for intrusion detection in the gigabit network environment.

Description

technical field [0001] The invention relates to the technical field of network security. In particular, it relates to a method for using multi-core processors for intrusion detection, using multiple cores to run intrusion detection engines for parallel detection, and using a dynamic load balancing method to adjust the load of each detection core. Background technique [0002] In the face of increasingly serious network intrusion attacks, network security experts have proposed many solutions. The Intrusion Detection (IDS) system model proposed by Denning in 1987 has been widely used for a long time. However, the defense capability of intrusion detection is its Achilles heel. Many intrusions are very fast, and if the intrusion defense is not timely, it will cause heavy losses. In a research report in 2003, the internationally renowned research organization Gartner stated that the intrusion detection system has been "dead". Gartner believes that IDS cannot bring additional s...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L12/26H04L29/08
Inventor 于洪伟刘贤洪
Owner SICHUAN CHANGHONG ELECTRIC CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com