Unlock instant, AI-driven research and patent intelligence for your innovation.

A Deep Packet Inspection Method Based on Regular Expression

A technology of deep packet inspection and expression, applied in the field of communication, to achieve the effect of optimizing the identification process, easy to implement, and avoiding false positives

Active Publication Date: 2017-07-07
BEIJING SAPLING TECH
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0013] e) The system detection module needs to be upgraded irregularly

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A Deep Packet Inspection Method Based on Regular Expression

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0031] The first embodiment of the present invention provides a deep packet inspection method based on regular expressions, including:

[0032] Step 202: Establish a set of characteristic pattern sets of intrusion behaviors according to the characteristics of various intrusion behaviors, divide the characteristic pattern set into m first-level subsets, and use a first-level regular expression for each first-level subset to represent , The first-level regular expression can identify the common features of the intrusion behavior in the corresponding first-level subset, and save the correspondence between the first-level subset and the first-level regular expression in the first-level data table;

[0033] Step 204: For the m subsets, subdivide within each subset, use a second-level regular expression to characterize the characteristics of each intrusion behavior within the range of the subset, and set the corresponding characteristics of each feature accordingly Processing measures: s...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

A regular expression-based deep packet inspection method avoids the problem of complex regular expressions and low matching efficiency caused by too many patterns through two-level pattern matching. Moreover, the data packet is not processed immediately after it is judged that the received data packet is received, but is processed only after confirming that the intrusion behavior has indeed occurred, thereby avoiding false alarms of the intrusion behavior and ensuring the stable and orderly progress of communication. By applying the above technologies, it is possible to obtain identification results more accurately and quickly in the security identification of data packets, and the identification process is also greatly optimized, which can be more easily implemented in existing equipment.

Description

Technical field [0001] The present invention relates to the field of communication technology, in particular to a method of deep packet inspection. Background technique [0002] Traditional network security detection is to analyze the structured header of the data packet. However, with the continuous development of the network, many viruses, malicious code, intrusion instructions, spam and other information are hidden in the content of the data packet. Therefore, In the current security inspection, in addition to inspecting the header of the data packet, the content of the data packet must also be inspected. [0003] Deep packet inspection (DPI) technology is a flow detection and control technology based on the application layer. When IP data packets, TCP or UDP data streams pass through a bandwidth management system based on DPI technology, the system reads the IP packet load in depth. The content is used to reorganize the application layer information in the OSI seven-layer prot...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L29/08H04L12/24
Inventor 苏长君郑曙光
Owner BEIJING SAPLING TECH