Dynamic network event correlation and linkage implement method and device

An event correlation, dynamic network technology, applied in special data processing applications, instruments, electrical digital data processing, etc., can solve the problems of poor description ability of correlated scenarios, inability to guarantee application continuity, etc., to ensure application continuity and reduce burden. , the effect of high operating efficiency

Active Publication Date: 2012-05-09
BEIJING TOPSEC TECH
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0007] The technical problem to be solved by the present invention is to provide a method and device for implementing dynamic network event association and linkage, which overcomes the shortcomings of state machine-based methods in the prior art, poor ability to describe associated scenarios and failure to guarantee application continuity

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Dynamic network event correlation and linkage implement method and device
  • Dynamic network event correlation and linkage implement method and device
  • Dynamic network event correlation and linkage implement method and device

Examples

Experimental program
Comparison scheme
Effect test

no. 1 example

[0044] The first embodiment of the present invention, such as figure 1 As shown, the implementation method of the dynamic network event association and linkage includes the following specific steps:

[0045] Step S101, initialize the running environment of the associated scene, specifically, load the dynamic link library required for network event association and linkage. The dynamic link library required for network event association and linkage includes functions defined by the operating environment itself, as well as extended functions written by users, which facilitates the writing of associated scenario scripts. Based on the operating environment such as the C language operating environment, the Java virtual machine operating environment, the glibc library operating environment, etc., the content of writing the extension function is well-known by those skilled in the art, so it will not be described in detail here.

[0046] Taking the C language operating environment as ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a dynamic network event correlation and linkage implement method and device. Correlation scene operating environment is initialized, correlation scene script edited by user by virtue of correlation language is compiled to generate a correlation scene, the correlation scene generated after compiling is loaded into the correlation scene operating environment, when network event takes places, operations described in the correlation scene is executed one by one, so as to realize event correlation and correlation result linkage. The invention is base on the script technology, provides event correlation language for the user, the user edits different correlation scene scripts by virtue of correlation language, the user can open, check and compile the correction scene script file by virtue of a notepad, and the correction scene script is closer to natural language. The invention overcomes the defects that the description capability of the method based on state machinein the prior art is poor and application continuity can not be guaranteed.

Description

technical field [0001] The invention relates to the technical field of network event correlation and linkage, in particular to a method and device for realizing dynamic network event correlation and linkage. Background technique [0002] Correlation analysis means that if there is a certain relationship between two or more things, one of them can be predicted by other things, and its purpose is to mine the hidden relationship between data. [0003] The meaning of linkage is that when an event occurs, specific operations in other systems need to be triggered at the same time. For example: the network intrusion detection system discovers the intrusion operation, and prevents the intrusion operation through linkage with the firewall system. [0004] At present, the state machine-based event correlation and linkage processing method is widely used. A state machine is precisely a directed graph consisting of a set of nodes and a set of corresponding transition functions. A sta...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): G06F17/30
Inventor 张凤羽刘勇
Owner BEIJING TOPSEC TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap