Unlock instant, AI-driven research and patent intelligence for your innovation.

Method and system for online update of protocol signature database

A protocol feature and feature library technology, applied in the field of communication, can solve problems such as slow update speed, low protocol recognition rate, frequent application protocol version and feature update, etc., achieve fast online update and improve protocol recognition efficiency.

Active Publication Date: 2017-10-17
CHINA TELECOM CORP LTD
View PDF2 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] At present, on the one hand, the popular application protocols are in order to avoid being identified, and on the other hand, it is also the demand for the continuous improvement of the application itself, which leads to frequent updates of the version and features of the application protocols, making the update speed of the above-mentioned protocol feature identification methods of the application protocol identification equipment unable to keep up. , which leads to a low protocol recognition rate, and even makes the existence of protocol recognition equipment seem dispensable

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and system for online update of protocol signature database
  • Method and system for online update of protocol signature database
  • Method and system for online update of protocol signature database

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0047]The present invention will be described more fully hereinafter with reference to the accompanying drawings, in which exemplary embodiments of the invention are illustrated. The exemplary embodiments of the present invention and their descriptions are used to explain the present invention, but do not constitute an improper limitation of the present invention.

[0048] Such as figure 1 As shown, it is a schematic flowchart of an embodiment of the online update method of the protocol feature database of the present invention. In this embodiment, the online update method of the protocol feature database includes:

[0049] Step 101, the traffic probe device identifies suspicious unknown data traffic that meets the preset rate and duration through DPI technology and DFI technology, and performs sampling;

[0050] Step 102, the traffic probe device sends samples of suspicious and unknown data traffic to the signature database analysis platform;

[0051] Step 103: After recei...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The present invention relates to a method and system for online update of a protocol feature library. The method includes: a traffic probe device identifies suspicious and unknown data flow through DPI technology and DFI technology, and samples; sends the sample to a feature library analysis platform; the feature library analysis platform Statistical characteristics and behavior pattern characteristics of the sample, and match with the data traffic of new protocols or applications not recorded in the protocol signature database, determine the corresponding statistical characteristics and behavior pattern characteristics, and form signature database files or signature entries; then update to the protocol feature library. The present invention detects suspicious and unknown data traffic in time by arranging traffic probe devices using DPI technology and DFI technology, and determines statistical characteristics and behavior pattern characteristics corresponding to new protocols or applications by collecting samples and matching them with new protocols or applications , and based on this, the protocol feature library is updated online, so as to realize the rapid online update of the protocol feature library and improve the efficiency of protocol identification.

Description

technical field [0001] The invention relates to the field of communication technology, in particular to a method and system for online updating of a protocol feature library. Background technique [0002] With the rapid development of Internet applications, especially mobile Internet in recent years, various new applications and new protocols are constantly emerging, and the versions of existing applications and protocols are also constantly updated, followed by the diversification of application layer protocol features As well as continuous evolution and changes, the corresponding identification methods also need to be continuously upgraded. Early network application protocols generally used fixed port numbers, and servers on the network side also usually used fixed Internet Protocol (IP) addresses. The corresponding ports can be easily identified by simply adding the port number to the IP address. Application protocols, so that different application protocols can be proce...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L12/26H04L29/06H04L29/08
Inventor 张琳峰林奕琳王庆扬陈建刚李英奇
Owner CHINA TELECOM CORP LTD
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com