Unlock instant, AI-driven research and patent intelligence for your innovation.

Message detection method and device, method and device for establishing local threat intelligence database

A technology of packet detection and intelligence library, applied in the field of communications, can solve the problems of time-consuming, occupying large bandwidth resources, affecting the work efficiency of defense equipment, etc., to save bandwidth resources, improve work efficiency, and simplify the processing process.

Active Publication Date: 2021-04-16
NEW H3C TECH CO LTD
View PDF9 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

In this way, frequently connecting to the Internet will occupy a large amount of bandwidth resources and consume time, affecting the efficiency of defense equipment

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Message detection method and device, method and device for establishing local threat intelligence database
  • Message detection method and device, method and device for establishing local threat intelligence database
  • Message detection method and device, method and device for establishing local threat intelligence database

Examples

Experimental program
Comparison scheme
Effect test

specific Embodiment approach

[0022] It should be noted that, in the embodiment of the present invention, the local threat intelligence database is established by the cloud threat intelligence information database according to the first application scenario identifier of the defense device and sends information to the defense device. In a preferred embodiment of the present invention In, a specific implementation manner of establishing a local threat intelligence database is provided, and the method may also include:

[0023] Step 99: Send a request for obtaining intelligence information to the cloud server; wherein, the request for obtaining intelligence information includes the first application scenario identifier of the defense device, so that the cloud server can identify and cloud threat according to the first application scenario identifier The second application scenario identifier of the intelligence information in the intelligence database is used to determine the intelligence information that mat...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

Embodiments of the present invention provide a message detection method and device, and a method and device for establishing a local threat intelligence database. The message detection method is applied to defense equipment, and the message detection method includes: receiving message traffic to be detected, According to the characteristics of the message traffic, determine whether there is target intelligence information matching the characteristics in the local threat intelligence database; wherein, the local threat intelligence database is based on the first application of the defense device through the cloud server The intelligence information sent by the scene identification is established; if it is determined that there is target intelligence information matching the feature in the local threat intelligence database, then according to the target intelligence information, determine the detection result of the message to be detected. Application of the embodiment of the present invention can realize the use of the local threat intelligence database to detect message traffic without frequent connection to the Internet, thereby saving bandwidth resources and improving the working efficiency of defense equipment.

Description

technical field [0001] The invention relates to network management technology in the communication field, in particular to a message detection method and device, and a method and device for establishing a local threat intelligence database. Background technique [0002] With the rapid development of Internet technology, traditional defense solutions based on signatures or regular expressions have been difficult to cope with the increasingly updated network viruses and network attacks. For this reason, threat intelligence technology has emerged. Threat intelligence technology refers to obtaining existing or upcoming threats or dangers by querying threat intelligence databases, and providing solutions to threats or dangers. [0003] Since the threat intelligence database includes massive data, the threat intelligence database is usually stored in cloud storage. In practical applications, because the local defense device needs to search and match information in the threat inte...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L29/08
CPCH04L63/1408H04L63/1416H04L63/1441H04L67/10
Inventor 梁力文张惊申
Owner NEW H3C TECH CO LTD