Unlock instant, AI-driven research and patent intelligence for your innovation.

A network attack defense method based on big data

A big data and anti-attack technology, applied in the field of network security and big data information, can solve the problems of network attack information transmission equipment, loss, and increase in the scope of network attacks, so as to ensure traceability and queryability, and ensure safety and effectiveness. , to avoid the effect of information silos

Active Publication Date: 2020-02-14
TERMINUSBEIJING TECH CO LTD
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Subsequently, network security has also become a matter of concern to people. In recent years, network attacks such as viruses and Trojan horses have occurred frequently. The devices are isolated, so the device that discovers or suffers from a network attack cannot transmit the network attack information to more devices in a timely manner, resulting in a gradual increase in the scope of network attacks and certain losses

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A network attack defense method based on big data
  • A network attack defense method based on big data
  • A network attack defense method based on big data

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0051]According to an embodiment of the present invention, a network attack defense method applied to the first detection node is proposed, such as figure 1 shown, including:

[0052] Step 101: the first detection node receives a detection request from a user, detects the device where it is located, and obtains detection data;

[0053] Specifically, the first detection node receives the detection request from the user, detects the security status of the device where it is located to obtain detection data, and records the detection time stamp.

[0054] Step 102: The first detection node analyzes the detection data obtained, and when the analysis result shows that there is a network attack behavior on the device, it generates alarm data according to the obtained detection data and sends it to the first node server for the first node server to analyze in the big data dissemination of information in the network.

[0055] According to an embodiment of the present invention, gener...

Embodiment 2

[0063] According to an embodiment of the present invention, a network attack defense method applied to the first node server is proposed, such as figure 2 shown, including:

[0064] Step 201: the first node server receives the alarm data from the first detection node;

[0065] Step 202: the first node server verifies the received alarm data, and when the verification is passed, sends the alarm data to each second node server for consensus verification by each second node server.

[0066] According to an embodiment of the present invention, in step 202, the first node server verifies the alarm data, including:

[0067] Step B1: The first node server parses the received alarm data to obtain the detection data summary, detection data ciphertext, detection time stamp and first device identification;

[0068] Specifically, the detection data abstract, detection data ciphertext, detection time stamp and first device identification in the alarm data are read according to a preset ...

Embodiment 3

[0079] According to an embodiment of the present invention, a network attack defense method applied to the second node server is proposed, such as image 3 shown, including:

[0080] Step 301: the second node server receives the alarm data sent by the first node server;

[0081] Specifically, the second node server receives the detection data summary, the detection time stamp, the first device identifier, and the second device identifier sent by the first node server.

[0082] Step 302: The second node server performs consensus verification on the received alarm data, and sends an attack blocking command to the corresponding second detection node when the verification is passed.

[0083] According to an embodiment of the present invention, in step 302, the second node server performs consensus verification on the received alarm data, specifically: verifying whether the received second device ID is a valid device ID, if yes, it is determined that the verification is passed; ot...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a network anti-attack method based on big data, and belongs to the technical field of network security and big data information. The method comprises the steps that a first detection node receives a detection request from a user, detects the equipment where the first detection node is located to obtain the detection data, analyzes the detection data, generates the alarm data according to the detection data when an analysis result shows that the network attack behaviors exist in the equipment where the first detection node is located, and sends the alarm data to a firstnode server; the first node server verifies the received alarm data, and sends the alarm data to each second node server when the verification passes; each second node server carries out consensus verification on the received alarm data and sends an attack blocking command to a corresponding second detection node when the verification passes; and the second detection node performs attack blockingon the equipment where the second detection node is located according to the attack blocking command. In the invention, the information sharing is realized by applying the big data information, so that the infringement range of the network attack is reduced, and the security of more equipment is ensured to a certain extent.

Description

technical field [0001] The invention relates to the technical fields of network security and big data information, in particular to a network attack defense method. Background technique [0002] With the rapid development of Internet technology, great changes have taken place in people's lifestyles. People browse news, shop online, and work online. It can be said that tens of thousands of devices and immeasurable resources are gathered in the network. information. Subsequently, network security has also become a matter of concern to people. In recent years, network attacks such as viruses and Trojan horses have occurred frequently. The devices are isolated, so a device that discovers or suffers a network attack cannot transmit network attack information to more devices in a timely manner, resulting in a gradual increase in the scope of network attacks and certain losses. Contents of the invention [0003] The purpose of the present invention is achieved through the follo...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06
CPCH04L63/1416H04L63/1433H04L63/1441H04L63/1466
Inventor 李莉莉
Owner TERMINUSBEIJING TECH CO LTD