Distributed self-learning abnormal flow cooperative detection method and system

A technology for abnormal traffic and collaborative detection, applied in the Internet field, can solve the problems of increasing the false alarm rate of the system, difficult to take into account the differences between different nodes, and difficult to guarantee network security and reliability, so as to reduce the false alarm rate, improve security and reliability. The effect of reliability

Active Publication Date: 2021-02-12
THE 28TH RES INST OF CHINA ELECTRONICS TECH GROUP CORP
View PDF6 Cites 6 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The overall strategy is easy to configure, but it is difficult to take into account the differences of different nodes
As a result, the larger the scale of the distributed system, the higher the false alarm rate of the system, and it is difficult to guarantee the overall security and reliability of the network.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Distributed self-learning abnormal flow cooperative detection method and system
  • Distributed self-learning abnormal flow cooperative detection method and system
  • Distributed self-learning abnormal flow cooperative detection method and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0017] In order to enable those skilled in the art to better understand the technical solutions of the present invention, the present invention will be further described in detail below in conjunction with the accompanying drawings and specific embodiments. Hereinafter, embodiments of the present invention will be described in detail, examples of which are shown in the accompanying drawings, wherein the same or similar reference numerals denote the same or similar elements or elements having the same or similar functions throughout. The embodiments described below by referring to the figures are exemplary only for explaining the present invention and should not be construed as limiting the present invention. Those skilled in the art will understand that unless otherwise stated, the singular forms "a", "an", "said" and "the" used herein may also include plural forms. It should be further understood that the word "comprising" used in the description of the present invention refe...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The embodiment of the invention discloses a distributed self-learning abnormal traffic cooperative detection method and system, relates to the technical field of the Internet, and aims to filter moreabnormal traffic more comprehensively and reduce the false alarm rate of the system. The method comprises the steps of: classifying input traffic through a traffic classifier, and malicious traffic isscreened out; uploading the malicious traffic to a comprehensive management module; enabling the comprehensive management module to mark the malicious traffic reported by the analysis node to obtaina malicious traffic sample; enabling the comprehensive management module to classify the malicious traffic sample into a system sample library and issue the malicious traffic sample to a specified analysis node; enabling the specified analysis node to update a node sample library corresponding to the specified analysis node according to the malicious flow sample issued by the integrated managementmodule; and enabling the specified analysis node to train a weight model according to the updated node sample library through a weight training module to obtain an updated weight, and importing the updated weight into a traffic classifier. The method and the system are suitable for a large-scale distributed system.

Description

technical field [0001] The invention relates to the technical field of the Internet, in particular to a distributed self-learning abnormal traffic collaborative detection method and system. Background technique [0002] With the large-scale development of network technology, the risks and threats in the network environment have become issues that cannot be ignored. In a distributed large-scale network, the network traffic of each node continues to increase, and the abnormal traffic mixed with it has complex and changeable characteristics, which not only increases the difficulty of supervision by managers, but also brings unpredictable risks to users and enterprises. Therefore, there is an urgent need for a comprehensive and efficient abnormal traffic monitoring system to detect and process more abnormal traffic in time to ensure the security and stability of large-scale network environments to the greatest extent. [0003] In a distributed network, multiple network traffic ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L12/24G06K9/62G06N3/04G06N3/08
CPCH04L63/1425H04L63/1466H04L41/0631H04L41/14G06N3/08G06N3/045G06F18/241
Inventor 张欣怡刘蔚棣郭乔进梁中岩胡杰宫世杰时高山杨冲昊汪义飞李长军
Owner THE 28TH RES INST OF CHINA ELECTRONICS TECH GROUP CORP
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap