Unlock instant, AI-driven research and patent intelligence for your innovation.

Statistical alarm method and device

A technology of alarm information and matching algorithm, which is applied in the field of network security, can solve problems such as false alarms, achieve the effects of reducing false alarm rates, avoiding statistical alarms, and improving accuracy

Active Publication Date: 2021-06-01
BEIJING ANTIY NETWORK SAFETY TECH CO LTD
View PDF5 Cites 3 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] However, in a peer-to-peer transmission network (P2P for short), a large number of invalid connections of SYN packets will be generated in the process of data transmission. Using the existing security detection and alarm algorithm based on statistics will make the transmission environment SYN packets generated under the invalid connection are counted, resulting in false positives

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Statistical alarm method and device
  • Statistical alarm method and device
  • Statistical alarm method and device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0071] In order to make the purpose, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the drawings in the embodiments of the present invention. Obviously, the described embodiments It is a part of embodiments of the present invention, but not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

[0072] As described in the background technology, in the prior art, a large number of semi-connections or invalid connections of SYN packets will be generated during the data transmission process of the point-to-point transmission network (peer-to-peer, referred to as P2P). The advanced security detection and alarm algorithm will take into ac...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to a statistical alarm method and device. The method comprises the following steps: acquiring network environment and flow data information of a user; determining target IP information and target port information of the corresponding user according to the network environment of the user; correspondingly adding the target IP information and the target port information to a white list library; analyzing the traffic data information to obtain corresponding first IP information and first port information; screening the first IP information and the first port information according to a white list library to obtain corresponding second IP information and second port information; matching the second IP information with the second port information by using a preset alarm matching algorithm to obtain a matching result; if the matching result is successful matching, generating the alarm information and sending it to the user, wherein the alarm information is used for indicating that the flow data information of the user is abnormal. According to the scheme, the false alarm rate of statistical alarms in a point-to-point environment can be reduced.

Description

technical field [0001] The invention relates to the technical field of network security, in particular to a statistical alarm method and device. Background technique [0002] With the rapid development of Internet technology, daily life is increasingly inseparable from the Internet, but at the same time cyber attacks have become more frequent. Most of the existing network security devices issue alarms based on statistical security detection and alarm algorithms. For example, common network attacks include: maliciously sending a large number of SYN packets to a server port, which will cause the server to open a large number of half-open connections, thereby consuming A large number of server resources also make it impossible to respond to normal connection requests. In this way, based on the existing security detection alarm algorithm, an alarm can be issued when the SYN packet exceeds the preset threshold, so as to make timely defense. [0003] However, in a point-to-point...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L12/24H04L29/06
CPCH04L63/1425H04L63/0236H04L63/101H04L41/06Y02D30/50
Inventor 李林哲郭丹枫关墨辰肖新光
Owner BEIJING ANTIY NETWORK SAFETY TECH CO LTD