Unlock instant, AI-driven research and patent intelligence for your innovation.

A detection method and device for targeted threat attack

A detection method and forward technology, applied in security communication devices, neural learning methods, digital transmission systems, etc., can solve the problems of high maintenance cost and low detection success rate, so as to reduce maintenance costs, overcome low detection success rate, Overcome the effect of high maintenance costs

Active Publication Date: 2022-06-28
北京天空卫士网络安全技术有限公司 +1
View PDF8 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] In view of this, embodiments of the present invention provide a detection method and device for targeted threat attacks to solve the technical problems of low detection success rate and high maintenance cost

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A detection method and device for targeted threat attack
  • A detection method and device for targeted threat attack
  • A detection method and device for targeted threat attack

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0090] Exemplary embodiments of the present invention are described below with reference to the accompanying drawings, which include various details of the embodiments of the present invention to facilitate understanding and should be considered as exemplary only. Accordingly, those of ordinary skill in the art will recognize that various changes and modifications of the embodiments described herein can be made without departing from the scope and spirit of the invention. Also, descriptions of well-known functions and constructions are omitted from the following description for clarity and conciseness.

[0091] figure 1 It is a schematic diagram of the main flow of the method for detecting a directed threat attack according to an embodiment of the present invention. As an embodiment of the present invention, such as figure 1 As shown, the detection method of the directed threat attack may include:

[0092] Step 101: Obtain network data of each sample machine, process the ne...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a detection method and device for a directional threat attack, and relates to the technical field of data security protection. A specific implementation of the method includes: acquiring network data of each sample machine, processing the network data of each sample machine, and obtaining a multidimensional array of each sample machine; according to the multidimensional array of each sample machine, Generating sequence arrays corresponding to each of the sample machines respectively; using the sequence arrays corresponding to each of the sample machines to perform supervised training on the neural network model; obtaining network data of the host to be tested, and processing the network data of the host to be tested , to obtain the multi-dimensional array of the host to be tested, and input the multi-dimensional array of the host to be tested into the trained neural network model, so as to calculate the probability of the targeted threat attack of the host to be tested. This embodiment can solve the technical problems of low detection success rate and high maintenance cost.

Description

technical field [0001] The invention relates to the technical field of data security protection, in particular to a method and device for detecting directed threat attacks. Background technique [0002] APT (Advanced Persistent Threat, Advanced Persistent Threat) is a targeted attack, which uses advanced attack methods to carry out long-term persistent network attacks on specific targets. The detection of APT is an important challenge for the current enterprise data security protection technology. [0003] The current mainstream APT detection method is based on deep packet inspection technology, which deeply analyzes and extracts the characteristics of data packets in the APT process, and forms specific keywords based on packet content, packet structure, packet correlation before and after, source-end pair characteristics, etc. Rules, establish a rule base, and perform APT detection by rule matching. [0004] In the process of realizing the present invention, the inventor ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/40H04L41/142G06N3/04G06N3/08
CPCH04L63/1416H04L63/20H04L41/142G06N3/08G06N3/045
Inventor 陈少涵胡跃吴雪阳
Owner 北京天空卫士网络安全技术有限公司