Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Attack detection method and device

A technology of attack detection and attack data, applied in the field of network security, can solve the problem of low WAF attack detection rate, and achieve the effect of improving security and attack detection rate

Inactive Publication Date: 2021-02-02
NEW H3C TECH CO LTD
View PDF5 Cites 4 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] The present invention provides an attack detection method and device to solve the problem of low detection rate of existing WAF attacks

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Attack detection method and device
  • Attack detection method and device
  • Attack detection method and device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0023] In order to enable those skilled in the art to better understand the technical solutions in the embodiments of the present invention, and to make the above-mentioned purposes, features and advantages of the embodiments of the present invention more obvious and understandable, the following describes the technical solutions in the embodiments of the present invention in conjunction with the accompanying drawings For further detailed explanation.

[0024] See figure 1 , is a schematic flowchart of an attack detection method provided by an embodiment of the present invention, as shown in figure 1 As shown, the attack detection method may include the following steps:

[0025] It should be noted that the sequence numbers of the steps in the embodiments of the present invention do not mean the order of execution, and the execution order of each process should be determined by its functions and internal logic, and should not constitute any obligation for the implementation of...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides an attack detection method and device, and the method comprises the steps: carrying out the serialization of HTTP request data after WAF filtering according to a pre-built vocabulary, so as to obtain a corresponding target mark sequence; inputting the target mark sequence into a pre-trained encoding and decoding network model to obtain a loss value of the HTTP request data;comparing the loss value of the HTTP request data with a threshold value, wherein the threshold value is obtained by utilizing the pre-trained encoding and decoding network model according to a verification data set, and the verification data set is obtained according to historical HTTP request data subjected to WAF filtering; and when the loss value of the HTTP request data is greater than the threshold, determining that the HTTP request data is attack data. By applying the embodiment of the invention, the attack detection rate can be improved.

Description

technical field [0001] The invention relates to the field of network security, in particular to an attack detection method and device. Background technique [0002] Attacks on the World Wide Web (Web for short) based on hypertext transfer protocol (HyperText Transfer Protocol, HTTP for short) requests are one of the most serious threats to web security. Common web attacks based on HTTP request / response include Structured Query Language (Structured Query Language, SQL) injection, spam, zero-day attacks, etc., especially zero-day attacks, which are very challenging to detect. [0003] Currently widely deployed signature-based Web Application Firewalls (Web Application Firewalls, WAFs for short) cannot update rules in real time to dynamically detect attacks, especially for zero-day attacks, and the detection rate is relatively low. Contents of the invention [0004] The invention provides an attack detection method and device to solve the problem of low detection rate of exi...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L12/24H04L12/26H04L29/08
CPCH04L63/1416H04L41/145H04L43/0823H04L43/16H04L67/02H04L63/0227
Inventor 杨新安尚素绢
Owner NEW H3C TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com