Unlock instant, AI-driven research and patent intelligence for your innovation.

A network intrusion detection system and method

A network intrusion detection and intrusion detection technology, applied in transmission systems, electrical components, etc., can solve problems such as limited equipment performance, low intrusion detection efficiency and throughput, and no targeted detection of intrusion packets.

Active Publication Date: 2021-10-19
ELECTRIC POWER RES INST OF GUANGDONG POWER GRID
View PDF9 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] This application provides a network intrusion detection system and method, which are used to solve the problem that the existing SDN-based intrusion detection has limited device performance, and the intrusion data packets are not detected efficiently and in a targeted manner, which leads to the efficiency and throughput of intrusion detection. low technical issues

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A network intrusion detection system and method
  • A network intrusion detection system and method
  • A network intrusion detection system and method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0038] For ease of understanding, see figure 1 , a first embodiment of a network intrusion detection system provided by the present application, comprising: a packet header matching module 101, a packet payload compiling module 102, and a packet payload matching module 103;

[0039] Packet header matching module 101 is used to extract the packet header field of the data packet to be combined into an N-tuple, and carry out packet header matching detection according to the N-tuple and the preset rule base, and trigger the packet load matching module if the match is successful;

[0040] Packet load compiling module 102, is used for when the complexity of data packet is lower than threshold value, is compiled packet load into DFA matching library, sends DFA matching library to packet load matching module, when the complexity of data packet is higher than or equal to threshold value , compile the packet payload into an NFA matching library, and send the NFA matching library to the ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

This application discloses a network intrusion detection system and method. The system includes: a packet header matching module, which is used to extract packet header fields and combine them into an N-tuple, and perform packet header matching detection according to the N-tuple and a preset rule base. If successful, the packet load matching module is triggered; the packet load compiling module is used to compile the packet load into a DFA matching library when the complexity of the data packet is lower than the threshold, and compile the packet load when the complexity of the data packet is higher than or equal to the threshold. The load is compiled into an NFA matching library, and the DFA matching library and the NFA matching library are sent to the packet payload matching module; the packet payload matching module is used to perform DFA matching detection according to the DFA matching library when detecting the packet payload of the data packet. If it succeeds, the NFA matching detection is directly skipped; otherwise, the NFA matching detection is performed according to the NFA matching library. The present application solves the existing technical problem of relatively low efficiency and throughput of SDN-based intrusion detection.

Description

technical field [0001] The present application relates to the technical field of network intrusion detection, in particular to a network intrusion detection system and method. Background technique [0002] Deep packet inspection and tuple matching are important technical means for intrusion detection, while software-defined networking (SDN) devices separate the control plane from the data plane to achieve flexible control and efficient forwarding. Therefore, implementing deep packet inspection and tuple matching on SDN devices can obtain high-performance network intrusion detection capabilities and flexible control over the network. [0003] The existing SDN-based intrusion detection has limitations in the performance of the SDN controller, and data packets that occupy a large memory are prone to space explosions during compilation. The efficiency of all-packet intrusion detection is low, and it is impossible to obtain high throughput. Contents of the invention [0004] ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06
CPCH04L63/1408H04L63/30
Inventor 曾智勇林丹生高雅伍晓泉黄晶晶
Owner ELECTRIC POWER RES INST OF GUANGDONG POWER GRID
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com