Network security situation awareness early warning method and system
What is Al technical title?
Al technical title is built by PatSnap Al team. It summarizes the technical point description of the patent document.
A network security and situational awareness technology, applied in the field of network technology and information security, can solve problems such as X86CPU attacks
Inactive Publication Date: 2019-09-06
四川久远国基科技有限公司
View PDF6 Cites 10 Cited by
Summary
Abstract
Description
Claims
Application Information
AI Technical Summary
This helps you quickly interpret patents by identifying the three key elements:
Problems solved by technology
Method used
Benefits of technology
Problems solved by technology
[0003] At present, domestic network situational awareness methods and systems are developed based on the combination of X86CPU of Intel Corporation of the United States and Microsoft...
Method used
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more
Image
Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
Click on the blue label to locate the original text in one second.
Reading with bidirectional positioning of images and text.
Smart Image
Examples
Experimental program
Comparison scheme
Effect test
Embodiment 1
[0041] In order to solve the problems in the background technology, the present invention provides a network security situational awareness early warning method and system, such as figure 1 As shown, the domestic independent and controllable computing environment is adopted, that is, based on the Phytium 1500CPU and the Galaxy Kylin operating system, 3 servers, switches, firewalls, PCs and other equipment will be specially configured, and the overall function design in the general framework of cyberspace situation management will be used. , monitor cyberspace equipment through the monitoring tool set, realize data collection, build a cyberspace management database, supervise cyberspace, and perform big data analysis and visual display. This embodiment adopts the domestic independent and controllable computing environment, Phytium 1500CPU and Galaxy Kylin operating system V4.0, Dongfangtong middle, Renda Jincang database system construction, realizes the characteristics of not r...
Embodiment 2
[0073] Such as image 3 As shown, corresponding to Embodiment 1, this embodiment provides a network security situational awareness early warning system, including:
[0074] A sample acquisition module, configured to acquire network data samples of physical cyberspace devices;
[0075] A preprocessing module, configured to preprocess the network data samples;
[0076] The analysis and processing module is used to analyze and process the preprocessed network data samples, obtain the attribute values of the network data, and correspond the attribute values of the network data to whether the network data is safe;
[0077] A feature vector extraction module extracts feature vectors from attribute values of the network data;
[0078] The knowledge base forming module is used to establish a database table structure and form a network security feature knowledge base according to the feature vector of the network data attribute value;
[0079] The real-time data collection mod...
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more
PUM
Login to view more
Abstract
The invention relates to a network security situation awareness early warning method and system. The method comprises the steps of obtaining a network data sample; preprocessing the network data sample; analyzing and processing the preprocessed network data sample to obtain an attribute value of the network data, and judging whether the attribute value of the network data is in safe correspondencewith the network data or not; extracting a feature vector from the attribute value of the network data; establishing a database table structure according to the feature vectors of the network data attribute values to form a network security feature knowledge base; acquiring real-time network data, and extracting a feature vector of a network data attribute value from the real-time network data; matching the feature vector of the network data attribute value with a network security feature knowledge base, and judging a network security situation according to a matching result; and forming a situation analysis report and a network comprehensive situation map according to the network security situation, and performing visual display. According to the invention, network space equipment security situation awareness early warning and visual expression are realized.
Description
technical field [0001] The present invention relates to the field of network technology and information security technology, in particular to a network security situational awareness early warning method and system. Background technique [0002] The network has penetrated into every aspect of modern life, but there are huge hidden dangers in the network security that people pay close attention to. Network security situational awareness is a proactive network defense method. It can not only reflect the current network security situation, but also predict potential attacks in the network, so as to make active defense against potential attacks. Network security situation awareness is to obtain a large amount of log data from software and hardware such as firewalls, security audits, and anti-virus software. Trends are forecasted. [0003] At present, domestic network situational awareness methods and systems are developed based on the combination of X86CPU of Intel Corporation...
Claims
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more
Application Information
Patent Timeline
Application Date:The date an application was filed.
Publication Date:The date a patent or application was officially published.
First Publication Date:The earliest publication date of a patent with the same application number.
Issue Date:Publication date of the patent grant document.
PCT Entry Date:The Entry date of PCT National Phase.
Estimated Expiry Date:The statutory expiry date of a patent right according to the Patent Law, and it is the longest term of protection that the patent right can achieve without the termination of the patent right due to other reasons(Term extension factor has been taken into account ).
Invalid Date:Actual expiry date is based on effective date or publication date of legal transaction data of invalid patent.
Login to view more 
Login to view more