Check patentability & draft patents in minutes with Patsnap Eureka AI!

Intelligent matching method of NGINX-MODSECURITY security rules

A matching method and rule technology, applied in the direction of instruments, calculation models, electrical components, etc., can solve the problems affecting the WAF efficiency and resource waste of the Web application protection system, and achieve the effect of reducing the bottleneck effect, improving the matching speed, and ensuring the speed.

Active Publication Date: 2015-05-13
LANGCHAO ELECTRONIC INFORMATION IND CO LTD
View PDF3 Cites 4 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] In the prior art, Nginx matches Modsecurity security rules by creating a selection tree and then traversing the entire tree to match, that is, matching all the rules in sequence, and the created process unpacks and analyzes the data packets accessed on the network, specifically The action is to compare the data packet information with the security rules. This comparison is carried out one by one, and the order is matched from front to back, which leads to waste of resources, such as when the last part of the rule is triggered. , the previous rule matching is useless, which directly affects the efficiency of the web application protection system WAF

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Intelligent matching method of NGINX-MODSECURITY security rules
  • Intelligent matching method of NGINX-MODSECURITY security rules
  • Intelligent matching method of NGINX-MODSECURITY security rules

Examples

Experimental program
Comparison scheme
Effect test

Embodiment

[0041] The NGINX-MODSECURITY security rule intelligent matching method of the present invention is mainly realized by the following steps:

[0042] (1) Dynamically classify the rules loaded into the server module according to the defense stage and defense scope;

[0043] (2) The traditional particle swarm optimization algorithm is improved, and its fast search function is used to select and define the most likely trigger rule classification;

[0044] (3) Within the classification of rules obtained in step (2), match the security rules through the binary search method.

[0045] Combining the above method with the core module modsecurity, a security rule intelligent matching module can be developed. as attached figure 1 As shown, to transform Nginx, Nginx only needs to pass data to the module and accept the value returned by the module. When performing rule matching, the internal data flow of the module is as follows: figure 2 shown.

[0046] Each step is described in deta...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses an intelligent matching method of NGINX-MODSECURITY security rules, and belongs to the field of development of Nginx models. The method comprises the steps of classifying the security rules according to the defense stage, the defense range and other factors; determining the rules closest to the access within the shortest time by the intelligent learning algorithm; finding out and classifying; then matching the rules within the classified small range by the binary search method. Compared with the prior art, the matching method has the characteristics of being high in matching efficiency, high in accuracy, and high in popularization and application value.

Description

technical field [0001] The invention relates to the field of module development of Nginx, in particular to an intelligent matching method of NGINX-MODSECURITY security rules. Background technique [0002] Nginx ("engine x") is a high-performance HTTP and reverse proxy server, as well as an IMAP / POP3 / SMTP proxy server. Known for its stability, rich feature set, sample configuration files and low consumption of system resources. [0003] Modsecurity is an intrusion detection and prevention engine, mainly used in web applications. [0004] According to statistics, more than 70% of attacks occur at the network application layer, and organizations at all levels urgently need help to ensure the security of their systems. The deployment of a WAF system can add an external security layer to web applications to detect or prevent attacks. Modsecurity provides powerful protection for web applications against a range of attacks, monitoring and real-time analysis of HTTP traffic, all ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L29/08G06N3/00
Inventor 路廷文刘刚戴纯兴
Owner LANGCHAO ELECTRONIC INFORMATION IND CO LTD
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com