Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method for detecting unknown abnormal behaviors of website

A detection method and website technology, which is applied in the field of detection of unknown abnormal behaviors of websites, can solve problems such as user network paralysis, difficulty in troubleshooting and handling, and insufficient early warning of network problems

Active Publication Date: 2017-12-05
HANGZHOU ANHENG INFORMATION TECH CO LTD
View PDF6 Cites 29 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] The technical problem solved by the present invention is that in the prior art, the common website protection software mainly detects the security loopholes of the website itself and various known threats, and has no ability to analyze unknown illegal connections and accesses, resulting in If the early warning of network problems is not in place, it is easy to cause users to be paralyzed in the network under unknown circumstances. It is extremely difficult to troubleshoot and deal with the subsequent problems, and then provides an optimized detection method for unknown abnormal behavior of the website.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0031] The present invention will be described in further detail below in conjunction with the examples, but the protection scope of the present invention is not limited thereto.

[0032] The invention relates to a method for detecting unknown abnormal behavior of a website, and the method includes the following steps.

[0033] Step 1: Obtain the original website information, preprocess, learn, and improve the website directed graph and web page in-degree table.

[0034] In the present invention, the log information of network devices, application systems and operating systems should be collected as much as possible, and efforts should be made to fully display the security alarms of known rules, focusing on the analysis of the following scenarios:

[0035] 1) Operating system log collection and analysis;

[0036] 2) Log linkage analysis of firewall, WAF, VPN and other network security equipment;

[0037] 3) DNS log analysis;

[0038] 4) Take the abnormal access of the page ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to a method for detecting the unknown abnormal behaviors of a website, and the method comprises the steps: obtaining original website information, carrying out the preprocessing and learning, and completing a directed graph and a webpage in-degree table of the website; detecting the access abnormal data of a single page; giving an alarm if the abnormality is detected, and adding one to the number of alarm times; detecting the access abnormality data of a key service; giving an alarm if the abnormality is detected, and adding one to the number of alarm times; detecting the access abnormality data of a single user; giving an alarm if the abnormality is detected, and adding one to the number of alarm times; counting the alarm times, and detecting the number of alarm times of a website HTTP protocol status code; giving an alarm to a website with the number of alarm times of the website HTTP protocol status code being greater than 20 in each half of an hour, carrying out the statistics of abnormal webpage URLs, and carrying out the sorting according to the number of access times; and carrying out the inspection. The method is used for detecting the security flaws of the website and various types of known threats, analyzing the unknown illegal connection and access, carrying out the early warning for a network problem, avoiding the paralysis of a user's network to the greatest extent, and facilitating the subsequent inspection, treatment and maintenance.

Description

technical field [0001] The invention belongs to the technical field of digital information transmission, such as telegram communication, and in particular relates to a method for detecting unknown abnormal behavior of websites related to information security technology. Background technique [0002] At present, the website system is becoming more and more advanced, and its functions are becoming more and more powerful. People can do various business processes, shopping and inquiries on the website system, which greatly facilitates users, but it also brings various security issues. , Such as crawlers, dragging libraries, etc. will lead to large-scale leakage of website data. With the development of information technology, the website library has become the core asset of many enterprises, especially financial and Internet enterprises. Once the website fails, the business of the entire enterprise will be paralyzed immediately. Therefore, website security has attracted more and ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L29/08H04L12/24
CPCH04L41/069H04L63/1425H04L63/1433H04L63/1466H04L67/02
Inventor 杨波范渊黄进
Owner HANGZHOU ANHENG INFORMATION TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com