Scene-based hybrid invasion detection method and system

An intrusion detection system and intrusion detection technology, applied in transmission systems, electrical components, etc., can solve problems such as increasing the probability of system false alarms, inability to flexibly adapt to system security behavior, and lack of security strategies, so as to improve accuracy and prevent internal attacks , the effect of increasing robustness

Inactive Publication Date: 2012-07-04
AUTOMATION RES & DESIGN INST OF METALLURGICAL IND
View PDF3 Cites 36 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Therefore, traditional application-based IDS systems are difficult to manage and deploy
[0007]The disadvantage of some current commercial IDS systems is the lack of security policies
These systems mainly rely on built-in static algorithms and cannot flexibly

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Scene-based hybrid invasion detection method and system
  • Scene-based hybrid invasion detection method and system
  • Scene-based hybrid invasion detection method and system

Examples

Experimental program
Comparison scheme
Effect test

Example Embodiment

[0052] An embodiment of the present invention: a scenario-based hybrid intrusion detection method, including the following steps:

[0053] S1, the intrusion detection system extracts the characteristics of the collected audit data according to the access control strategy and related application scenario information;

[0054] S2, according to the characteristics of the audit data, apply combined forecasting methods to forecast suspicious intrusion events, where the forecasting methods can be used in combination with time series analysis method, probability model method, data mining method and other methods;

[0055] S3, combining suspicious intrusion events and alarm related information, and determining intrusion events based on statistical laws, learning mechanisms or expert judgment methods;

[0056] S4: If an intrusion event occurs, the intrusion detection system generates alarm information and sends it to the security management platform for visual display.

[0057] Compared wi...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a scene-based hybrid invasion detection method and a scene-based hybrid invasion detection system. The method comprises the following steps that: 1, an invasion detection system extracts the characteristics of acquired audit data according to an access control strategy and related application scene information; 2, the invasion detection system forecasts a suspicious invasion event by a combined forecasting method according to the characteristics of the audit data; 3, the invasion detection system determines an invasion event by combining the suspicious invasion event and alarm associated information; and 4, if a certain invasion event occurs, the invasion detection system generates alarm information, and transmits the alarm information to a security management platform for visual display. By the method and the system, the accuracy of invasion detection can be improved, the security of a physical layer of the system can be protected, and internal attacks of the system can be prevented.

Description

technical field [0001] The invention relates to a scene-based hybrid intrusion detection method and system, belonging to the technical field of industrial control security. Background technique [0002] Recently, information attacks have seriously threatened the stability of the network. These attacks take advantage of the interconnection and interaction characteristics of the network, and spread very fast, and the attack technology is getting more and more sophisticated, and the attack methods are becoming more and more complex. Traditional information security systems, such as firewalls and intrusion detection systems (IDS), have serious deficiencies in network attack prediction, and usually respond only after these attacks have caused serious damage. [0003] Most traditional intrusion detection systems use a network-based or host-based approach to identifying and responding to attacks. These systems often use two types of intrusion detection methods, namely abnormal in...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06
Inventor 张云贵赵永丽王丽娜于立业赵华张伟
Owner AUTOMATION RES & DESIGN INST OF METALLURGICAL IND
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap