Alarm sorting method and device based on big data environment

A sorting method and big data technology, applied in the field of network security, can solve problems such as network security incidents, no solution proposed, flooding, etc., to achieve the effect of improving processing efficiency

Active Publication Date: 2020-02-28
HANGZHOU ANHENG INFORMATION TECH CO LTD
View PDF6 Cites 6 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

If the alarm information of unimportant assets is huge, and a lot of alarm information is generated every day, it is very likely that the alarm information of important assets will be floode

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Alarm sorting method and device based on big data environment
  • Alarm sorting method and device based on big data environment
  • Alarm sorting method and device based on big data environment

Examples

Experimental program
Comparison scheme
Effect test

Example Embodiment

[0029] Example one:

[0030] According to an embodiment of the present invention, an embodiment of a method for sorting alarms based on a big data environment is provided. It should be noted that the steps shown in the flowchart of the accompanying drawings can be implemented in a computer system such as a set of computer executable instructions. Execution, and although a logical order is shown in the flowchart, in some cases, the steps shown or described may be executed in a different order than here.

[0031] figure 1 It is a flowchart of an alarm sequencing method based on a big data environment according to an embodiment of the present invention, such as figure 1 As shown, the method includes the following steps:

[0032] Step S102: Obtain alarm information of the system to be detected, where the alarm information is information generated when the system to be detected is attacked;

[0033] Step S104, based on the analytic hierarchy process, determine the weight value of the ala...

Example Embodiment

[0086] Embodiment two:

[0087] The present invention also provides an embodiment of a device for sorting alarms based on a big data environment. The device is used to execute the method for sorting alarms based on a big data environment provided in the above-mentioned embodiments of the present invention. The following is provided by the embodiments of the present invention Specific introduction of alarm sequencing device based on big data environment.

[0088] Such as image 3 As shown, the aforementioned device for sorting alarms based on a big data environment includes: an acquiring unit 10, a determining unit 20, a calculating unit 30, and a sorting unit 40.

[0089] The acquiring unit is configured to acquire alarm information of the system to be detected, where the alarm information is information generated when the system to be detected is attacked;

[0090] The determining unit is configured to determine the weight value of the alarm type corresponding to the alarm informatio...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides an alarm sorting method and device based on a big data environment, and relates to the technical field of network security, and the method comprises the steps: obtaining alarm information of a to-be-detected system, the alarm information being information generated when the to-be-detected system is attacked; determining a weight value of an alarm type corresponding to the alarm information based on an analytic hierarchy process; an alarm score of the alarm information is calculated based on a Hacker new algorithm and the weight value of the alarm type corresponding to the alarm information, and the alarm score is used for representing the importance of the alarm information; and sorting the alarm scores to obtain a score sequence of the alarm information, thereby solving the technical problem of relatively low processing efficiency of important alarm information in the prior art.

Description

technical field [0001] The invention relates to the technical field of network security, in particular to an alarm sorting method and device based on a big data environment. Background technique [0002] In the situational awareness platform or general system, when sorting the latest alarm information, the technicians first sort all the alarm information in reverse chronological order, and then sort according to the alarm level from high to low. [0003] Since the situational awareness platform is a big data analysis platform, there are many sources for collecting alarm information, a wide range of channels, and a large amount of alarm information. Based on these reasons, if the alarm levels are simply arranged in reverse chronological order and the alarm levels are arranged from high to low, the problem caused by this is that key alarms cannot be reflected. Here, critical alarms refer to alarms generated on important assets, or alarms generated on important assets and are ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L12/24H04L29/06
CPCH04L63/30H04L41/065
Inventor 范颜婷范渊黄进
Owner HANGZHOU ANHENG INFORMATION TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap