Unlock instant, AI-driven research and patent intelligence for your innovation.

Brute force attack detection method and system, and equipment

A detection method and brute force technology, applied in transmission systems, digital transmission systems, electrical components, etc., can solve the problems of high false alarm rate and low detection rate of brute force cracking attacks, so as to reduce the possibility, save waiting and detection delay Effect

Pending Publication Date: 2021-10-12
北京观成科技有限公司
View PDF5 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Even if there are some methods to propose the detection technology of popular behavior characteristics, it is only applicable to the laboratory environment, failing to take into account the complexity of the real network environment, resulting in a low detection rate of brute-force cracking attacks and a high false positive rate in the real network environment

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Brute force attack detection method and system, and equipment
  • Brute force attack detection method and system, and equipment
  • Brute force attack detection method and system, and equipment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0049] The core of the present invention is to provide a practical and reliable detection method, detection system and equipment for brute force attack.

[0050]In order to enable those skilled in the art to better understand the solution of the present invention, the present invention will be further described in detail below in conjunction with the accompanying drawings and specific embodiments. Apparently, the described embodiments are only some of the embodiments of the present invention, but not all of them. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

[0051] The terms "first", "second", "third", "fourth", etc. (if any) in the specification and claims of the present application and the above drawings are used to distinguish similar objects, and not necessarily Used to describe a specific sequence or sequen...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a brute force attack detection method and system, and equipment. The method comprises the following steps: grouping to-be-processed network flow; respectively extracting flow features of each network session in each group to obtain a flow feature set of each group; calculating a discrete trend index of each flow feature in the flow feature set of each group, and comparing the discrete trend index with a preset discrete trend standard threshold value; and obtaining a brute force attack result of a to-be-processed network session according to a comparison result of the discrete trend index and the discrete trend index standard threshold. According to the invention, detection is carried out according to the flow features of the to-be-processed network flow without depending on the attack frequency and the number of ports, and brute force attack attack behaviors in the network flow can be effectively detected. The network session is taken as a detection sample unit, so that the method is more flexible and practical, and a brute force attack can be detected at the first time when the brute force attack occurs, thereby reducing the possibility of successful brute force attack.

Description

technical field [0001] The invention relates to the field of computer network security, in particular to a detection method, detection system and equipment for brute force cracking attacks. Background technique [0002] With the popularity of encrypted services and the improvement of security awareness, more and more encrypted services are used for communication on the Internet, and remote management of servers and terminals uses SSH and RDP encrypted transmissions. Encrypted transmission protocols such as SSH and RDP can protect the privacy and integrity of users' remote login passwords and prevent them from being eavesdropped or tampered with. However, it also brings challenges to the detection of attack behavior through encrypted protocols. For plaintext communication, the attack behavior is easy to detect and defend; but for the attack behavior in the encrypted channel, it is difficult for existing security devices to detect and identify. [0003] Brute force cracking ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L12/801
CPCH04L63/1416H04L63/1425H04L47/29Y02D30/50
Inventor 刘燚南野
Owner 北京观成科技有限公司