Scene-based hybrid invasion detection method and system

An intrusion detection system and intrusion detection technology, applied in transmission systems, electrical components, etc., can solve problems such as inability to flexibly adapt to system security behavior, lack of security policies, and increase the probability of system false alarms, so as to prevent internal attacks and increase robustness performance and improve the accuracy

Inactive Publication Date: 2014-07-09
AUTOMATION RES & DESIGN INST OF METALLURGICAL IND
View PDF3 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Therefore, traditional application-based IDS systems are difficult to manage and deploy
[0007]The disadvantage of some current commercial IDS systems is the lack of security policies
These systems mainly rely on built-in static algorithms and cannot flexibly adapt to such systems that change the security behavior of the system
For systems employing anomaly detection, any deviation from the contours of normal behavior is considered suspicious, which greatly increases the probability of false alarms for the system

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Scene-based hybrid invasion detection method and system
  • Scene-based hybrid invasion detection method and system
  • Scene-based hybrid invasion detection method and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0052] Embodiments of the present invention: a scene-based hybrid intrusion detection method, comprising the following steps:

[0053] S1, the intrusion detection system extracts the characteristics of the collected audit data according to the access control policy and relevant application scenario information;

[0054] S2. According to the characteristics of the audit data, apply a combined forecasting method to forecast suspicious intrusion events, where the forecasting method can be used in combination with time series analysis method, probability model method, data mining method, etc.;

[0055] S3, combine suspicious intrusion events and alarm related information, and determine intrusion events according to statistical laws, learning mechanisms or expert discrimination methods;

[0056] S4. If an intrusion event occurs, the intrusion detection system generates alarm information and sends it to the security management platform for visual display.

[0057] Compa...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The present invention discloses a scene-based hybrid intrusion detection method and system. The method includes the following steps: S1, the intrusion detection system extracts the characteristics of the collected audit data according to the access control policy and relevant application scene information; S2, according to the audit Based on the characteristics of the data, the combined forecasting method is used to forecast suspicious intrusion events; S3, combined with suspicious intrusion events and alarm related information, to determine the intrusion event; S4, if an intrusion event occurs, the intrusion detection system generates alarm information and sends it to the security management platform for visualization. The invention can improve the accuracy rate of intrusion detection, perform safety protection on the system physical layer, and prevent system internal attacks.

Description

technical field [0001] The invention relates to a scene-based hybrid intrusion detection method and system, belonging to the technical field of industrial control security. Background technique [0002] Recently, information attacks have seriously threatened the stability of the network. These attacks take advantage of the interconnection and interaction characteristics of the network, and spread very fast, and the attack technology is getting more and more sophisticated, and the attack methods are becoming more and more complex. Traditional information security systems, such as firewalls and intrusion detection systems (IDS), have serious deficiencies in network attack prediction, and usually respond only after these attacks have caused serious damage. [0003] Most traditional intrusion detection systems use a network-based or host-based approach to identifying and responding to attacks. These systems often use two types of intrusion detection methods, namely abnormal in...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06
Inventor 张云贵赵永丽王丽娜于立业赵华张伟
Owner AUTOMATION RES & DESIGN INST OF METALLURGICAL IND
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap