Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

An attack detection method, device, and website application-level intrusion prevention system waf

An intrusion prevention system and attack detection technology, applied in transmission systems, digital transmission systems, secure communication devices, etc., can solve problems such as network security risks, and achieve the effects of reducing security risks, improving scalability, and continuous attack detection

Active Publication Date: 2022-04-22
NEW H3C SECURITY TECH CO LTD
View PDF10 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] The purpose of the embodiment of the present application is to provide an attack detection method, device, and website application-level intrusion prevention system WAF, so as to improve the scalability of WAF, and solve the problem of potential safety hazards in the network caused by the interruption of the attack detection.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • An attack detection method, device, and website application-level intrusion prevention system waf
  • An attack detection method, device, and website application-level intrusion prevention system waf
  • An attack detection method, device, and website application-level intrusion prevention system waf

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0110] The following will clearly and completely describe the technical solutions in the embodiments of the application with reference to the drawings in the embodiments of the application. Apparently, the described embodiments are only some of the embodiments of the application, not all of them. Based on the embodiments in this application, all other embodiments obtained by persons of ordinary skill in the art based on this application belong to the scope of protection of this application.

[0111] For ease of understanding, the words appearing in the embodiments of the present application are explained below.

[0112] Nginx: A lightweight web server. The characteristics of Nginx are: it occupies less memory and has strong concurrency capability. The concurrency capability of Nginx performs well among the same type of web servers, and it has good Hypertext Transport Protocol (Hypertext Transport Protocol, HTTP) processing capability and reverse proxy capability.

[0113] Cu...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The embodiment of the present application provides an attack detection method, device, and website application-level intrusion prevention system WAF. The WAF includes a proxy server, a connector, and a matching engine. The method includes: the proxy server receives the message to be detected, and sends the message to be detected Transmission to the connector; the connector transmits the message to be detected to the matching engine through the registration interface of the matching engine; the matching engine performs attack detection on the message to be detected, and determines the detection result of the message to be detected. By applying the technical solution provided by the embodiment of the present application, the scalability of the WAF can be improved, and the problem of potential safety hazards in the network caused by interruption of traffic due to attack detection can be solved.

Description

technical field [0001] The present application relates to the technical field of network security protection, in particular to an attack detection method and device and a website application-level intrusion prevention system WAF. Background technique [0002] With the development of Internet technology, website (Web) applications are getting more and more attention from business systems. At the same time, web servers with powerful computing power, processing performance and high value have gradually become the main attack targets. [0003] In order to maintain the security of the web server, the currently commonly used website application-level intrusion prevention system (WebApplication Firewall, WAF) is the Nginx-based ModSecurity protection system. In this WAF, the Nginx proxy server is connected to the ModSecurity detection engine, which has a built-in core rule set. The Nginx proxy server forwards the received packet to the ModSecurity detection engine. The ModSecurit...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/40H04L69/22
CPCH04L63/1416H04L69/22
Inventor 徐胜
Owner NEW H3C SECURITY TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products