Unlock instant, AI-driven research and patent intelligence for your innovation.

Security detection method based on application firewall and related equipment

An application firewall and security detection technology, applied in the field of network security, can solve the problems of high false positive rate, strong correlation, affecting the normal function of the application system, etc.

Active Publication Date: 2020-08-25
上海泛微网络科技股份有限公司
View PDF8 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] The existing solution is for the overall defense detection of attack characteristics, which cannot be strongly correlated with the business of the actual application system, resulting in a high false positive rate and affecting the normal function of the application system

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Security detection method based on application firewall and related equipment
  • Security detection method based on application firewall and related equipment
  • Security detection method based on application firewall and related equipment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0023] The present invention provides a security detection method and related equipment based on the application firewall, which is used to actively collect the request parameters of the application system through the application firewall. By configuring appropriate rules for the request parameters, accurate verification can be realized, and the error caused by the use of general rules can be reduced. False alarm rate.

[0024] In order to enable those skilled in the art to better understand the solutions of the present invention, the embodiments of the present invention will be described below with reference to the drawings in the embodiments of the present invention.

[0025] The terms "first", "second", "third", "fourth", etc. (if any) in the description and claims of the present invention and the above drawings are used to distinguish similar objects, and not necessarily Used to describe a specific sequence or sequence. It is to be understood that the terms so used are in...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a security detection method based on an application firewall and related equipment, which are used for actively acquiring request parameters of an application system through the application firewall, configuring appropriate rules for the request parameters to realize accurate verification, and reducing the false alarm rate caused by using general rules. The method comprisesthe following steps: deploying an application firewall WAF in an application system and configuring a filter; calling an application firewall to perform security check filtering on the initial inbound request in the application system according to a preset general rule to obtain a target inbound request; starting an automatic parameter collection mechanism to monitor the target inbound request, wherein the automatic parameter collection mechanism is used for collecting a request parameter value corresponding to the target inbound request; sending the corresponding request parameter value to aparameter rule configuration platform; obtaining a target parameter rule sent by a parameter rule configuration platform, and synchronously deploying the target parameter rule to an application system; and calling the WAF to perform subsequent security detection based on the target parameter rule.

Description

technical field [0001] The invention relates to the field of network security, in particular to a security detection method based on an application firewall and related equipment. Background technique [0002] With the rapid development of Internet technology, network security has been paid more and more attention. The goal is to generally use a web application firewall (Web application firewall, WAF) to detect and verify the content of various requests from web application clients to ensure their security and legitimacy, and to block illegal requests in real time. Applications provide protection, and WAF is an important part of the network security defense-in-depth system. [0003] Most products on the market today are rule-based WAFs. The principle is that each session has to go through a series of tests, and each test consists of one or more detection rules. If the test fails, the request will be considered illegal and rejected. Rule-based WAF tests are easy to constru...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
CPCH04L63/0263
Inventor 韦利东杨国生柳炉王金永
Owner 上海泛微网络科技股份有限公司