Supercharge Your Innovation With Domain-Expert AI Agents!

OSSEC alarm data aggregation method based on category attribute division

A category attribute and data aggregation technology, applied in the field of data aggregation, can solve the problem of high false alarm rate, achieve the effect of reducing system false alarm rate, improving alarm data aggregation rate and system detection rate

Active Publication Date: 2018-11-16
GUILIN UNIV OF ELECTRONIC TECH
View PDF2 Cites 6 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] In view of the above-mentioned shortcoming of the prior art, the object of the present invention is to provide a kind of OSSEC alarm data aggregation method based on category attribute division, to solve the problem of high false alarm rate in the prior art

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • OSSEC alarm data aggregation method based on category attribute division
  • OSSEC alarm data aggregation method based on category attribute division
  • OSSEC alarm data aggregation method based on category attribute division

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0066] Embodiments of the present invention are described below through specific examples, and those skilled in the art can easily understand other advantages and effects of the present invention from the content disclosed in this specification. The present invention can also be implemented or applied through other different specific implementation modes, and various modifications or changes can be made to the details in this specification based on different viewpoints and applications without departing from the spirit of the present invention. It should be noted that, in the case of no conflict, the following embodiments and features in the embodiments can be combined with each other.

[0067] It should be noted that the diagrams provided in the following embodiments are only schematically illustrating the basic ideas of the present invention, and only the components related to the present invention are shown in the diagrams rather than the number, shape and shape of the compo...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides an OSSEC alarm data aggregation method based on category attribute division. The method comprises: S1, collecting original OSSEC alarm data; S2, standardizing the original OSSECalarm data to obtain standardized OSSEC alarm data; S3, preprocessing the alarm data collected at the S1; S4, processing the OSSEC alarm data from the S2 and enabling OSSEC alarm data to be matched layer by layer in an ascending order; S5, calculating similarities of all attributes of all OSSEC alarm data; S6, calculating global similarities of all OSSEC alarm data and calculating weight values of all attributes of all OSSEC alarm data; and S7, according to the similarities of all attributes obtained at the S5 and weight values of all attributes obtained at the S6, calculating global similarities of all OSSEC alarm data and calculating an aggregation result. According to the invention, the conventional single-time-dependent attribute aggregation comparison is broken and a nested owner-member relationship idea is introduced; and layer-by-layer aggregation of category attributes of alarm data in an ascending order is realized based on the category attribute division algorithm and thus the attribute similarity of the adjacent alarm data is calculated flexibly. Meanwhile, the OSSEC alarm data aggregation rate and system detection rate are effectively increased and the system false alarm rate is reduced.

Description

technical field [0001] The invention relates to a data aggregation method, in particular to an OSSEC alarm data aggregation method based on category attribute division. Background technique [0002] With the rapid development of network technology, network attacks and network traffic have also increased rapidly, and the resulting security issues have also attracted our attention. Faced with the diversification of current attack behaviors, the distributed intrusion detection system has built various security devices for these formations. However, our traditional IDS’s ability to deal with attacks is not perfect. Since most of the network security devices are in an independent working state, the processing efficiency of alarm data is reduced, and it is easy to generate a large number of redundant alarms and false alarms. Phenomena such as leakage alarm. Therefore, these alarm data are aggregated, in order to obtain higher detection efficiency and more attack-related alarms, ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L12/24H04L12/26H04L29/06G06F17/30
CPCH04L41/0604H04L41/0613H04L43/045H04L43/0823H04L43/106H04L63/1416
Inventor 陶晓玲龚昱鸣周理胜王勇史科杏何倩
Owner GUILIN UNIV OF ELECTRONIC TECH
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com