Message detection method and device

A packet detection and packet technology, applied in the field of communication, can solve the problems of DPI service interruption, network attack, long recompilation time, etc., and achieve the effect of reducing interruption time and reducing the possibility of attack.

Active Publication Date: 2018-01-30
NEW H3C SECURITY TECH CO LTD
View PDF5 Cites 9 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] However, during the process of recompiling the rules in the rule management library, there is no detection engine available on the security device, and the detection engine cannot be used to process the message, and the DPI service is interrupted. At this time, if the DPI device receives the message, it will directly forward it
Especially in the case of a large number of rules in the rule management library, it will take a long time to recompile the rules in the rule management library, which may cause the DPI service of the security device to be interrupted for a long time, and the network protected by the security device may be easily attacked

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Message detection method and device
  • Message detection method and device
  • Message detection method and device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0024] The following will clearly and completely describe the technical solutions in the embodiments of the application with reference to the drawings in the embodiments of the application. Apparently, the described embodiments are only some of the embodiments of the application, not all of them. Based on the embodiments in this application, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the scope of protection of this application.

[0025] In order to reduce the possibility that a network protected by a security device is attacked, an embodiment of the present application provides a packet detection method and device. refer to figure 1 , figure 1 The first schematic flow chart of the message detection method provided by the embodiment of the present application is applied to a security device, and the method includes:

[0026] S101: Classify the rules in the rule management library, compile each type of rule ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The embodiment of the invention provides a message detection method and device, and is applied to security equipment. The method comprises the steps that the rules in a rule management library are classified, each type of rules are compiled one by one so as to generate distributed detection engines performing message detection by using the type of rules, and all the rules in the rule management library are compiled so as to generate a master detection engine performing message detection by using all the rules; when a message is received, whether the master detection engine is generated is detected; if the master detection engine is not generated, existence of the generated distributed detection engines is detected; if the generated distributed detection engines exist, the generated distributed detection engines are utilized to detect the message; and if the first distributed detection engine of the generated distributed detection engines detects that the message is matched with the rule used by the first distributed detection engine, the message is processed by using the first distributed detection engine according to the matched rule. With application of the message detection method and device, the possibility of attack to the network protected by the security equipment can be reduced.

Description

technical field [0001] The present application relates to the field of communication technologies, and in particular to a message detection method and device. Background technique [0002] The technical core of DPI (Deep Packet Inspection, deep packet inspection) is the detection engine. The detection engine integrates the rule management library and is set on the security device. The rule management library is IPS (Intrusion Prevention System, intrusion prevention system), APR (Application Recognition , application identification) and other rule sets related to the upper-layer application load identification business, the detection engine can use the rules in the rule management library to detect packets. In some scenarios, such as active / standby device switchover, rule management library upgrade, and service policy change delivery process, the rules in the rule management library will be recompiled, and the detection engine will be regenerated, and the security device will...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
Inventor 李金英
Owner NEW H3C SECURITY TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap