Software intrusion detection system and method

An intrusion detection system and software technology, applied in transmission systems, electrical components, platform integrity maintenance, etc., can solve problems such as inability to adapt to switching technology and high-speed network development, inflexible deployment, poor scalability, etc., to improve intrusion detection. Efficiency, improve capture efficiency, good compatibility effect

Active Publication Date: 2017-09-19
INST OF INFORMATION ENG CAS
View PDF6 Cites 22 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0007] The present invention provides a software-based intrusion detection system and method, which can solve the problems existing in existing intrusion detection systems, such

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Software intrusion detection system and method
  • Software intrusion detection system and method
  • Software intrusion detection system and method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0068] The specific implementation manners of the present invention will be further described in detail below in conjunction with the accompanying drawings and embodiments. The following examples are used to illustrate the present invention, but are not intended to limit the scope of the present invention.

[0069] Such as figure 1 As shown, it is an architecture diagram of a software-based intrusion detection system provided by an embodiment of the present invention, including: a control core 1, a detection core 2 and an output core 3, wherein,

[0070] The control core 1 is used to interact with the upper controller, and manage the information generated by the detection core 2 and the output core 3;

[0071] The detection core 2 is used to collect and analyze data packets based on DPDK, and traverse the rule base to detect and match the analyzed data packets;

[0072] The output core 3 is used to regularly record the detection and matching results obtained by the detection...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a software intrusion detection system and method. The software intrusion detection system includes three levels: a control kernel, a detection kernel and an output kernel, wherein the control kernel is used for interacting with an upper layer controller, and managing the information generated from the detection kernel and the output kernel; the detection kernel is used for performing acquisition and analysis on a data packet, based on DPDK (DataPlane DevelopmentKit), traversing a rule base to performing detection matching on the analyzed data packet; and the output kernel is used for recording the detection matching result obtained by the detection kernel in a system log on time, packaging the obtained invalid data packet information and then reporting the packaged invalid data packet information to the control kernel according to the detection matching result. The software intrusion detection system and method are flexible in deployment and high in scalability, have the advantages of reducing copy of messages and having nucleophilicity, and can significantly improve the processing capability of messages. Besides, the upper layer is opened for the control interface, so that the software intrusion detection system and method have controllability, and can be preferably compatible with a virtual and cloud computing platform.

Description

technical field [0001] The invention relates to the technical field of security monitoring, and more specifically, to a software-based intrusion detection system and method. Background technique [0002] Intrusion Detection System (Intrusion Detection System, IDS) is a software application or hardware device used to monitor malicious events in the network or computer. signs, and generate system logs to the management unit, so as to realize timely response and processing of intrusion or attack. [0003] Traditional intrusion detection systems include hardware intrusion detection systems and software intrusion detection systems. Among them, the hardware intrusion detection system is usually composed of hardware, manufactured and developed by professional equipment manufacturers, and needs to rely on multiple equipment and software to operate together. IDS hardware products can be basically divided into two categories according to the source of their input data: Host-based ID...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06G06F21/56
CPCG06F21/56H04L63/1416H04L63/1425
Inventor 杨慧然刘超玲张棪于光喜韩言妮陈鑫崔华俊
Owner INST OF INFORMATION ENG CAS
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap