Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method, device and system for IPS (Intrusion Prevention System) to actively recognize and close misrecognition feature item

A technology of misidentification and feature items, applied in the computer field, can solve the problems of reducing the learning and work efficiency of normal network users, misidentification of intrusion prevention systems, loss of enterprise units, etc., and achieve the effect of avoiding network failures and economic losses

Pending Publication Date: 2017-02-01
OPZOON TECH
View PDF0 Cites 3 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] However, due to the limited ability of the intrusion prevention system to identify attacks and the limited number of signature databases of the intrusion prevention system, there will be a certain probability of misidentification in the intrusion prevention system. Once misidentification occurs, its impact will be very large. It may intercept some normal and healthy traffic in the network environment, which seriously reduces the learning and work efficiency of normal network users, and even causes economic losses to enterprises
[0004] The existing technology only reduces the occurrence of misidentification by continuously maintaining and improving the identification quality of the intrusion prevention system and continuously enriching the feature library of the intrusion prevention system. There is no effective solution to identify and close the misidentification in a timely and effective manner when it occurs

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method, device and system for IPS (Intrusion Prevention System) to actively recognize and close misrecognition feature item
  • Method, device and system for IPS (Intrusion Prevention System) to actively recognize and close misrecognition feature item
  • Method, device and system for IPS (Intrusion Prevention System) to actively recognize and close misrecognition feature item

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0036] In order to make the purpose, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the drawings in the embodiments of the present invention. Obviously, the described embodiments It is only some embodiments of the present invention, but not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without creative efforts fall within the protection scope of the present invention.

[0037] figure 1 It shows a schematic flowchart of a method for automatically identifying and disabling misidentified feature items provided by an intrusion prevention system provided by an embodiment of the present invention, as shown in figure 1 As shown, the method for the intrusion prevention system of this embodiment to automatically identify...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a method, a device and a system for an IPS (Intrusion Prevention System) to actively recognize and close a misrecognition feature item. The method comprises the following steps of the intrusion prevention system utilizes two global arrays to monitor an intrusion event alternatively, and the time for each global array to monitor the intrusion event is a preset time bucket; and when the intrusion prevention system utilizes one in the two global arrays to monitor the intrusion event, the intrusion prevention system utilizes data obtained by monitoring of the other one in the two global arrays to recognize whether the intrusion event is the misrecognition feature item and closes a detection switch of the recognized misrecognition feature item. According to the method, the device and the system, when the misrecognition feature item occurs, the misrecognition feature item can be effectively recognized and the misrecognition feature item is closed.

Description

technical field [0001] The invention relates to the field of computer technology, in particular to a method, device and system for automatically identifying and closing misidentified feature items in an intrusion prevention system. Background technique [0002] Intrusion Prevention System (IPS for short) is the main tool to ensure the security environment of the network, and it is a supplement to the antivirus software and firewall. It can effectively intercept a large amount of attack traffic hidden in the network environment. [0003] However, due to the limited ability of the intrusion prevention system to identify attacks and the limited number of signature databases of the intrusion prevention system, there will be a certain probability of misidentification in the intrusion prevention system. Once misidentification occurs, its impact will be very large. It may intercept some normal and healthy traffic in the network environment, which seriously reduces the learning and ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06
CPCH04L63/1416
Inventor 张辉
Owner OPZOON TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products