Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

A network intrusion detection and active defense linkage control device

An active defense and network intrusion technology, applied in the field of network security, can solve problems such as ambiguous alarm meaning, high false alarm rate, and inability to achieve linkage defense

Active Publication Date: 2019-10-11
CHENGDU UNIV OF INFORMATION TECH
View PDF6 Cites 4 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] The purpose of the present invention is to provide a network intrusion detection and active defense linkage control device, which aims to solve the traditional intrusion detection has its own inherent defects in the face of ever-changing network attacks, the meaning of the alarm is vague, and the false alarm rate is high , it is difficult to coordinate between the systems, and the defense strategy cannot be actively implemented when an intrusion is detected. The network administrator needs to manually configure the device for defense, but it is impossible to achieve real-time linkage defense.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A network intrusion detection and active defense linkage control device
  • A network intrusion detection and active defense linkage control device
  • A network intrusion detection and active defense linkage control device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0052] In order to make the objectives, technical solutions and advantages of the present invention clearer, the present invention will be further described in detail below in conjunction with embodiments. It should be understood that the specific embodiments described herein are only used to explain the present invention, but not to limit the present invention.

[0053] The present invention combines the traditional network anomaly detection PHAD (packet headeranomaly detection) model method, and at the same time adds an appropriate network traffic feature vector, through limited detection and analysis of the key fields of the data packet content, and strives to accurately determine whether there is an attack Network traffic characteristics, on this basis, through the implementation of dynamic intervention on the forwarding rule table of the data packet forwarding module (mainly refers to the modification of the effective and effective time of the rules) to achieve the blocking o...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a network intrusion detection and active defense linkage control device, comprising a packet forwarding module, a packet mirroring traffic preprocessing module, a linkage control device module, a network behavior detection and analysis module and a traffic database cluster system.The invention combines the traditional network anomaly detection PHAD model method, combines the limited depth detection and analysis to the critical segment of the packet and tries to accurately determine whether the network traffic has the characteristic with attack behavior. On this basis, implement the dynamic intervention through the forwarding rules table of the packet forwarding module to achieve the abnormal data traffic block.The main characteristic of the device is to analyze the attack behavior and reverse control the forwarding behavior. When the abnormal network attack is detected, the data flow can be effectively cut off in real time so as to achieve the active detection attack and the active defense.

Description

Technical field [0001] The invention belongs to the technical field of network security, and particularly relates to a network intrusion detection and active defense linkage control device. Background technique [0002] Traditional intrusion detection techniques are divided into two types: misused-based techniques and anomaly-based techniques. The former is detected by describing the special mode of each attack. It is the main technique used in current intrusion detection commercial products. It relies on artificial pre-set alarm rules to achieve, so it has its own in the face of constantly changing network attacks. Inherent flaws. The behavior of network attacks is changing, and the methods and methods are constantly changing. Almost all traditional intrusion detection technologies solidify the detection methods in the program, and it is difficult to deal with real-time changes in intrusion methods (although some products currently provide upgrade strategies, but The implement...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06
Inventor 何林波
Owner CHENGDU UNIV OF INFORMATION TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com