Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Detection method, based on entropy analysis, of traffic abnormity of smart grid communication network

A smart grid communication and network flow technology, applied in the abnormal detection of smart grid communication network traffic, and in the field of abnormal detection of smart grid communication network traffic based on entropy analysis, it can solve log abnormalities, cannot determine the abnormal type, and the log information processing process is complicated and other problems to achieve the effect of meeting the detection requirements, satisfying real-time detection, and simple methods

Inactive Publication Date: 2017-01-25
STATE GRID CORP OF CHINA +3
View PDF13 Cites 15 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] However, as a two-way power and information flow infrastructure that integrates power distribution systems and communication networks, the smart grid will generate a large amount of log information during operation. Requirements for real-time log detection
On the other hand, the above processing method can only detect log anomalies, and cannot judge the anomaly type based on the acquired log information, and then obtain the cause of smart grid log anomalies, which cannot well meet the detection needs of smart grid

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Detection method, based on entropy analysis, of traffic abnormity of smart grid communication network
  • Detection method, based on entropy analysis, of traffic abnormity of smart grid communication network
  • Detection method, based on entropy analysis, of traffic abnormity of smart grid communication network

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0032] The present invention will be further described in detail below in conjunction with the accompanying drawings and specific embodiments.

[0033] Such as figure 1 As shown, the entropy analysis-based smart grid communication network traffic anomaly detection method provided by the present invention specifically includes the following steps: first, receive the characteristic values ​​of the log information generated during the operation of the smart grid in real time; secondly, within the time threshold, count The probability of occurrence of each feature value; then, calculate the entropy of each feature value, and perform normalization processing to generate an entropy vector; finally, calculate the difference between the current time threshold and the entropy vector of the previous time threshold, and according to the entropy The difference between the vectors and the attack characteristics of the network traffic determine the type of abnormal network traffic. The fol...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a detection method, based on entropy analysis, of traffic abnormity of a smart grid communication network. The method comprises the following steps: S1, receiving characteristic values of log information produced during operation of a smart grid in real time; S2, making statistics of the probability of occurrence of each characteristic value within a time threshold; S3, computing the entropy of each characteristic value, and performing normalization processing, so as to produce entropy vectors; S4, repeating S1 to S3, computing the difference value of entropy vectors of the current time threshold and the previous time threshold, and judging the types of network traffic abnormity according to the difference value of the entropy vectors and network traffic attack characteristics. According to the method, the method for acquiring the entropy vectors is relatively simple, and the demand of smart grid log information real-time detection can be effectively met. On the other hand, the method can not only detect log abnormity, but also judge the types of abnormity according to obtained log information, further obtain reasons of smart grid log abnormity, and properly meet the detection requirements of the smart grid.

Description

technical field [0001] The invention relates to a method for detecting abnormal flow of a communication network of a smart grid, in particular to a method for detecting abnormal flow of a communication network of a smart grid based on entropy analysis, and belongs to the technical field of electric power communication security. Background technique [0002] With the rapid expansion of network scale, the security problems faced by the network are becoming more and more complex. The analysis of network traffic is an important research content of network security management, especially intrusion detection analysis. Network anomalies are one of the major threats to networks. Typical abnormal network activities include Distributed Denial of Service (DDos), port scanning, worms and viruses, etc. Nowadays, although there has been a large amount of related research on network anomaly detection, it is still a challenge to find a generic method to detect network anomalies. [0003] ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L12/24H04L29/06
CPCH04L41/0631H04L63/1416H04L63/1425
Inventor 吕超高明慧霍雪松裴培王黎明
Owner STATE GRID CORP OF CHINA
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com