Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Network security situation analysis method and system

A network security and situational technology, applied in transmission systems, electrical components, etc., can solve problems such as inability to determine security threats and difficulty in identifying threat information, and achieve the effect of improving comprehensiveness and accuracy.

Active Publication Date: 2019-09-13
UNIV OF ELECTRONICS SCI & TECH OF CHINA
View PDF5 Cites 24 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

For general security information, the scale is huge, and these massive data may be mixed with a lot of false positive information.
In addition, the threat information that really affects the current network security situation is likely to be submerged in the massive information and difficult to identify, and it is impossible to determine specific security threats

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Network security situation analysis method and system
  • Network security situation analysis method and system
  • Network security situation analysis method and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0050] like figure 1 The system for analyzing the network security situation of the present invention includes: a network flow packet capture module connected to a database, used to obtain information on each web page in the network, and an application layer that receives the database information; the application layer includes:

[0051] Application database: connect with the database and provide data support for other modules of the application layer;

[0052] Traffic collection module: perform traffic collection, traffic filtering, traffic storage, traffic cleaning and traffic segmentation on the data received by the application database;

[0053] Traffic analysis module: analyze the traffic obtained by the traffic collection module, and obtain the security element information required for security analysis;

[0054] Feature extraction module: perform feature extraction on the security element information obtained by the traffic analysis module. The feature extraction of th...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to a network security situation analysis method and system, and the method comprises the steps: A, carrying out the SQL injection detection: obtaining a corresponding word vectoraccording to the condition whether a part with an SQL injection attack exists in a domain name, and building a model for detecting the SQL injection attack; B, DGA malicious domain name detection: extracting feature vectors in a domain name to obtain a training model, and performing cross validation on the training model to obtain precision and recall rate; C, detecting malicious scripts: detecting whether a malicious code exists in the webpage script or not through a training model; D, assessing network security situation: assessing the total situation value of all the hosts according to thesecurity level; E, predicting network security situation: outputting prediction results through an LSTM layer and a Bi-LSTM layer and three fully connected layers. The accuracy of network security situation analysis can be obviously improved, different types of network security can be tested and analyzed from multiple angles, and the comprehensiveness of network security situation analysis and prediction is effectively improved.

Description

technical field [0001] The invention relates to a method and system for network security situation analysis. Background technique [0002] Network security situational awareness was first proposed by Tim Bass in 1999. He pointed out that "the next-generation network intrusion detection system should integrate data collected from a large number of heterogeneous distributed network sensors to realize cyberspace situational awareness (Cyberspacesituational awareness)". Network security situational awareness is to extract those security factors that may affect changes in the network security situation in a specific network environment, and analyze and visualize the extracted security factor information to predict possible development trends. Network security situational awareness is a macro concept, which emphasizes the overall status and overall development trend of a network environment. It uses data fusion technology to fuse various available security factors information to...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
CPCH04L63/1416H04L63/1425H04L63/1466
Inventor 张小松钱国庆牛伟纳李江超王垭胡斌
Owner UNIV OF ELECTRONICS SCI & TECH OF CHINA
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products