Unlock instant, AI-driven research and patent intelligence for your innovation.

A command and control communication detection method and system

A command and control and communication detection technology, applied in transmission systems, electrical components, etc., can solve the problems of increased detection difficulty, lack of a relatively mature communication detection method, and various attack forms

Active Publication Date: 2021-09-14
北京金睛云华科技有限公司
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] In the field of C&C communication detection, there are many forms of attacks, continuous improvement of attack methods, and increasing detection difficulty. At present, there is no mature communication detection method

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A command and control communication detection method and system
  • A command and control communication detection method and system
  • A command and control communication detection method and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0026] The C&C communication detection method and system provided in the embodiments of the present application will be described in detail below with reference to the accompanying drawings.

[0027] Terms used in the embodiments of the present invention are only for the purpose of describing specific embodiments, and are not intended to limit the present invention. As used in the embodiments of the present invention and the appended claims, the singular forms "a", "said" and "the" are also intended to include the plural forms unless the context clearly indicates otherwise.

[0028] In addition, the terms "including" and "having" mentioned in the description of the present application and any variations thereof are intended to cover non-exclusive inclusion. For example, a process, method, system, product or device comprising a series of steps or units is not limited to the listed steps or units, but optionally also includes other unlisted steps or units, or optionally also inc...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The application provides a command and control communication detection method and system, which relate to the fields of computer network security and artificial intelligence, can construct a DGA intelligent detection model, and improve the detection accuracy and efficiency of DGA domain names. The method includes: constructing a training dataset of black and white domain name samples; constructing feature vector files of different categories by using a variety of feature extraction algorithms according to the training dataset; using feature vector files of different categories to train the DGA base classifier; The DGA base classifier and integrated strategy construct the DGA intelligent detection model; build and train the reinforcement learning model, and use the reinforcement learning model to strengthen the detection ability of the DGA intelligent detection model; use the DGA intelligent detection model and the association analysis algorithm to identify the target object. This method is applied to the construction and application process of DGA intelligent detection model.

Description

technical field [0001] The present application relates to the fields of computer network security and artificial intelligence, in particular to a command and control (C&C) communication detection method and system. Background technique [0002] With the rapid development of Internet applications, the chains of black interests carried in them are getting bigger and bigger, and the forms of attacks are also diverse and innovative, making the detection of network attacks more and more difficult. Among them, botnets have become one of the fastest-changing forms, the widest range of designs, and the most serious direct harm. [0003] Domain Name System (Domain Name System, DNS) is the basic service of Internet communication, and its core capability is to convert human-intelligible domain names into IP addresses that can be recognized by machines. Since the DNS protocol is commonly used in the network, attackers usually use the DNS protocol as a tool for Command and Control (C&C)...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L29/12
CPCH04L63/1441H04L63/1408H04L2463/144H04L61/4511
Inventor 曲武
Owner 北京金睛云华科技有限公司