Method and device for security status awareness of inter-domain routing system based on weighted similarity

A weighted similarity and system security technology, which is applied in the field of inter-domain routing security monitoring, can solve the problem of low reliability of monitoring results, achieve the effect of high accuracy of judgment results, strong real-time performance, and overcome the dependence of completeness
CN107302518BActive Publication Date: 2020-02-14SURFILTER NETWORK TECH
17 Cites 0 Cited by

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Patents(China)
Current Assignee / Owner
SURFILTER NETWORK TECH
Publication Date
2020-02-14

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

The invention discloses an inter-domain routing system security state sensing method and device based on weighted similarity. The method comprises the steps of: acquiring data of inter-domain routing system security state features; generating a standard feature set of an inter-domain routing system security state; generating a real-time feature set of the inter-domain routing system security state; according to a preset rule, calculating the similarity between the real-time feature set and the standard feature set; according to the calculated similarity, calculating the feature deviation between the real-time feature set and the standard feature set; and when the calculated feature deviation is smaller than a preset threshold, judging that the inter-domain routing system runs normally. Data of inter-domain routing system security state features can be acquired via a self deployed monitoring node or a public project such as Route Views and the like, so that the dependency on the completeness of an abnormal route set is overcome; and the method can judge the security state of the inter-domain routing system in real time, and is strong in real-time capability and high in judgment result accuracy.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The present invention relates to the technical field of inter-domain routing security monitoring, in particular to a method and device for sensing the security status of an inter-domain routing system based on weighted similarity. Background technique

[0002] With the increasingly serious Internet security situation, the security problems faced by the inter-domain routing system, which uses the Border Gateway Protocol (BGP) as the communication mechanism and is responsible for the exchange of routing information between different autonomous domains in the entire network, are also becoming more and more prominent. , in which, the inter-domain routing system security monitoring solution does not need to modify the original routing protocol, does not need to deploy key management infrastructure covering the entire network, and can incrementally arrange monitoring nodes according to user needs, achieving low cost and scalability Strong, and in the case of...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More