Unlock instant, AI-driven research and patent intelligence for your innovation.

An operating system identification method, storage medium and device based on xgboost algorithm

A technology of operating system and recognition method, which is applied in the computer field, can solve problems such as detection failure, and achieve the effects of low false negative rate, improved recognition efficiency, and strong recognition ability

Active Publication Date: 2021-08-13
XI AN JIAOTONG UNIV
View PDF7 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] The technical problem to be solved by the present invention is to provide an operating system identification method, storage medium and equipment based on the XGBoost algorithm to identify the operating system in a passive manner to solve the problem that active detection may fail ;Catch the data in the real traffic to optimize the fingerprint library to improve the recognition efficiency; use the integrated learning XGBoost algorithm to introduce the idea of ​​gradient descent to improve the recognition accuracy and speed

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • An operating system identification method, storage medium and device based on xgboost algorithm
  • An operating system identification method, storage medium and device based on xgboost algorithm
  • An operating system identification method, storage medium and device based on xgboost algorithm

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0037]The invention provides an operating system identification method, storage medium and equipment based on the XGBoost (eXtreme Gradient Boosting) algorithm. According to the TCP / IP protocol, combined with the P0f fingerprint library, a passive operating system identification method is adopted to solve the problem of active detection and possible detection. The problem of failure. Due to the large amount of data in the fingerprint database, the present invention deletes the problem of repeated fingerprints caused by fuzzy matching and precise matching in the fingerprint database according to actual needs, and simplifies the identification model. At the same time, the XGBoost machine learning algorithm is introduced to improve the problem that unknown fingerprints cannot be identified only relying on the fingerprint library. The fingerprint library is automatically updated by collecting Windows7 and Windows10 traffic, which solves the problem that the version of the fingerpri...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses an operating system identification method, storage medium and equipment based on the XGBoost algorithm. Firstly, based on the third-party fingerprint library P0f, its feature dimension is optimized to remove repetitive problems caused by fuzzy matching and precise matching; Data analysis in real traffic generates test set data; secondly, Windows7 and Windows10 data incremental training improves recognition efficiency; thirdly, C4.5 decision tree algorithm is used to verify the data before and after the increment, and the results show the recognition accuracy after incremental training Greatly improved; finally, the XGBoost algorithm was introduced, and the layered architecture framework was used to identify unknown fingerprints, improving the recognition accuracy and reducing false positives and missed negatives.

Description

technical field [0001] The invention belongs to the technical field of computers, and in particular relates to an operating system identification method, storage medium and equipment based on an XGBoost algorithm. Background technique [0002] The development and growth of the network has brought more and more network security problems while facilitating people's resource sharing and information communication. As small as the leakage of personal privacy, as large as the paralysis of servers and problems with national infrastructure threaten human security. If you want to effectively prevent malicious attackers from attacking the network, users need to use a vulnerability scanner in advance to detect potential security risks in the system and take corresponding solutions in a timely manner. Some operating system types and versions have some well-known security vulnerabilities, and network attackers can use these security vulnerabilities as a starting point for network attack...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L12/24G06K9/62G06N20/20
CPCH04L69/22H04L41/14G06N20/20G06F18/214G06F18/24323
Inventor 范建存党钰洁张鹏辉
Owner XI AN JIAOTONG UNIV