Network data processing method, device and system

A technology for network data and processing methods, applied in the field of network security, can solve the problems of missing network data of hosts and servers, low data processing accuracy, etc., and achieve the effect of improving platform compatibility, saving transmission bandwidth, and data integrity and comprehensiveness

Active Publication Date: 2017-05-24
HILLSTONE NETWORKS CORP +1
View PDF7 Cites 48 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0007] Embodiments of the present invention provide a network data processing method, device, and system to at least solve the problem in the prior art that network data comes from hosts and servers in a local area network, and some network data is filtered out by a firewall to reach the network of hosts and servers. Missing data, leading to technical problems with low accuracy of data processing

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Network data processing method, device and system
  • Network data processing method, device and system
  • Network data processing method, device and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0040] According to an embodiment of the present invention, an embodiment of a method for processing network data is provided. It should be noted that the steps shown in the flowcharts of the drawings can be executed in a computer system such as a set of computer-executable instructions, and , although a logical order is shown in the flowcharts, in some cases the steps shown or described may be performed in an order different from that shown or described herein.

[0041] figure 2 is a flowchart of a network data processing method according to an embodiment of the present invention, such as figure 2 As shown, the method includes the following steps:

[0042]Step S202, the server collects multiple network data collected by multiple firewalls during operation, wherein multiple firewalls are deployed at multiple LAN exits, and each network data includes at least: the operating status of each firewall, traffic data, domain name information, suspicious files, and threat informat...

Embodiment 2

[0194] According to an embodiment of the present invention, an embodiment of an apparatus for processing network data is provided.

[0195] Figure 22 is a schematic diagram of a network data processing device according to an embodiment of the present invention, such as Figure 22 As shown, the device includes:

[0196] The collection module 221 is configured to collect multiple network data collected by multiple firewalls during operation, wherein multiple firewalls are deployed at multiple LAN exits, and each network data includes at least: the running status and flow data of each firewall , domain name information, suspicious files and threat information.

[0197] Specifically, the above-mentioned server may be a cloud server. Based on cloud computing technology, the available computing power, storage capacity and network capacity can achieve near-infinite scalability. Cloud computing technology and big data technology are closely integrated. Based on the storage and com...

Embodiment 3

[0209] According to an embodiment of the present invention, an embodiment of a network data processing system is provided.

[0210] Figure 23 is a schematic diagram of a network data processing system according to an embodiment of the present invention, such as Figure 23 As shown, the system includes:

[0211] Multiple firewalls 231 are deployed at multiple LAN exits to collect multiple network data during operation, wherein each network data includes at least: the running status of each firewall, traffic data, domain name information, suspicious files and threats information.

[0212] Specifically, the above-mentioned local area network can be the network exit of a company or institution, and the firewall deployed at the local area network exit can provide security protection for the data assets of the intranet, and the hosts and servers of the intranet and the interconnected network data all pass through the firewall, so , the firewall can collect more comprehensive and...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a network data processing method, device and system. The method comprises: a server acquires collected multiple network data of multiple firewalls in a running process, wherein the multiple firewalls are configured at multiple local area network exports, and each network data at least comprises: a running state of each firewall, flow data, domain name information, suspicious files and threatening information; the server analyzes the multiple network data, thereby obtaining multiple analyzed network data; the server stores the multiple analyzed network data into a first database; and meanwhile, the server runs multiple analysis engines and analyzes the multiple analyzed network data, so that analysis results are obtained, and then protective capability of each firewall is enhanced. The network data processing method, device and system solve a technical problem of low data processing accuracy caused by the loss of network data arriving at a host and the server due to the fact that the network data is from the host and the server of a local area network and the firewalls filter a part of the network data in the prior art.

Description

technical field [0001] The present invention relates to the field of network security, in particular to a method, device and system for processing network data. Background technique [0002] Firewall products are deployed at the network egress of a company or institution to protect the data assets in the subnet. Firewalls are based on technologies such as behavioral analysis, threat detection, and intrusion prevention to discover network threat issues. [0003] The advantage of a firewall is to protect against security issues within a single organization, such as network security issues within a government department, group company, bank or financial institution system. For the discovery of cross-agency, cross-region, and cross-industry comprehensive security problems, the capabilities of a single firewall or a group of firewalls within a group cannot be achieved. For the discovery of this comprehensive and global network threat problem, one requires the ability to collect...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
CPCH04L63/0227
Inventor 高扬
Owner HILLSTONE NETWORKS CORP
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap