Unlock instant, AI-driven research and patent intelligence for your innovation.

Security situation awareness and protection method and device based on behavior recognition

A security situation and behavior technology, applied in the field of computer networks, can solve problems such as inability to dynamically protect and limited ability to obtain network security situation information, and achieve the effect of improving utilization

Active Publication Date: 2022-05-17
CHINA ACADEMY OF ELECTRONICS & INFORMATION TECH OF CETC
View PDF5 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] The technical problem to be solved by the present invention is that the current network security situation information acquisition ability is limited, and dynamic protection cannot be performed from a global perspective, and a security situation awareness and protection method based on behavior identification is provided

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Security situation awareness and protection method and device based on behavior recognition
  • Security situation awareness and protection method and device based on behavior recognition
  • Security situation awareness and protection method and device based on behavior recognition

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0060]Object of the present invention is to provide a security situational awareness and protection method based on behavior recognition, for solving the current network security situation information acquisition ability is limited, can not be from the global perspective of dynamic protection problems. Firstly, the network status information obtained by the SDN controller in real time identifies the abnormal behavior of nodes and paths, and evaluates the security posture of nodes and paths in real time; secondly, based on the security posture calculation results and the virtualization scheduling algorithm of security resources, the decentralized security resources in the network are flexibly scheduled, and a protection scheme is built to meet the security needs of users, so as to prevent attackers from attacking the network chrome through malicious or untrusted nodes and improve the utilization of security resources in the network. Implement global early warning and dynamic prote...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The present invention proposes a security situation awareness and protection method based on behavior identification. The method specifically includes: step 1, checking the validity of the application program in the SDN controller; step 2, collecting the security situation of each node in the network in real time elements, wherein the nodes include SDN switches and other devices that interact with the SDN controller; step 3, calculate the security situation value of each node in the network; step 4, according to the security situation of the node and the carrying capacity of the transmission link, the Evaluate the security situation of the transmission path; step 5, periodically perform steps 1 to 4, and perform security situation awareness on the network according to the security situation information of nodes and paths; step 6, perform steps 1 to 5, and obtain current security situation awareness Based on the results and the historical security situation information of each node and path, the distributed security resources in the network are scheduled on demand, the malicious nodes in the network are dynamically isolated, and global early warning and dynamic protection are carried out for attacks.

Description

Technical field [0001] The present invention relates to the field of computer network technology, in particular to a security situational awareness and protection method and apparatus based on behavior recognition. Background [0002] The issue of security situational awareness and protection in cyberspace has become a research hotspot for scholars at home and abroad in recent years. At present, the main technologies for obtaining the security posture include: 1) the application of big data processing and visualization technology to analyze the network security situation; 2) the quantitative expression of the network security status based on the network security incident. However, due to factors such as the timing of access to situational information, the comprehensiveness of information collection, and the untimely protection strategy, the work of identifying real threats in the network in a timely and comprehensive manner and providing effective protection is not ideal, thus l...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/40
CPCH04L63/1416H04L63/1425H04L63/1441
Inventor 王蒙蒙罗鑫吴宝江朱兴国王栋李杨马克祥马建
Owner CHINA ACADEMY OF ELECTRONICS & INFORMATION TECH OF CETC