Intrusion prevention rule dynamic adjustment method and device

A dynamic adjustment and intrusion prevention technology, which is applied in the computer field, can solve the problems of slow process startup and high CPU usage, and achieve the effects of slow startup, faster matching speed, and high CPU memory usage.

Active Publication Date: 2020-05-15
BEIJING QIANXIN TECH +1
View PDF4 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] It is the defect that IPS does not pass filtering at all when loading rules, and loads a large number of useless rules, which leads to slow process startup and high CPU usage during startup

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Intrusion prevention rule dynamic adjustment method and device
  • Intrusion prevention rule dynamic adjustment method and device
  • Intrusion prevention rule dynamic adjustment method and device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0047] In order to make the purpose, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the drawings in the embodiments of the present invention. Obviously, the described embodiments It is a part of embodiments of the present invention, but not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without creative efforts fall within the protection scope of the present invention.

[0048] As mentioned in the background technology section, the current IPS function on the market has always had such a major defect: IPS does not pass filtering at all when loading rules, loads a large number of useless rules, slow process startup, and continuously occupies high CPU during startup. For example, even if the HTTP service is not enab...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The embodiment of the invention provides an intrusion prevention rule dynamic adjustment method and device. The method comprises the following steps: acquiring a network service port currently openedby a host, acquiring a sub-service port opened under each network service port according to the network service port currently opened by the host, and loading an IPS protection rule matched with the opened sub-service port according to the sub-service port opened under each network service port. According to the embodiment of the invention, the network service ports are currently opened accordingto the host and the sub-service ports are opened according to each network service port, the IPS protection rule matched with the opened sub-service port is loaded, so that only the IPS protection rule matched with the currently started network service of the host can be loaded without loading all the IPS protection rules, so that the problems of slow IPS process starting and high CPU memory occupied by continuous starting can be solved, and the data packet matching speed can be increased.

Description

technical field [0001] The invention relates to the field of computer technology, in particular to a method and device for dynamically adjusting intrusion prevention rules. Background technique [0002] An intrusion prevention system (Intrusion-prevention system, IPS for short) detects anomalies and attack loads in the data packets by detecting the data packets, so as to process the data packets. [0003] The current IPS function on the market has always had such a major flaw: [0004] That is, when IPS loads rules without filtering at all, it loads a large number of useless rules, which leads to slow process startup and high CPU usage during startup. Contents of the invention [0005] In view of the problems in the prior art, embodiments of the present invention provide a method and device for dynamically adjusting intrusion prevention rules. [0006] Specifically, the embodiments of the present invention provide the following technical solutions: [0007] In the first...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06
CPCH04L63/1416H04L63/1441H04L63/205
Inventor 路林生王保刚
Owner BEIJING QIANXIN TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap