Method and device for extracting entity relationship from network threat intelligence document

A technology of entity relationship and extraction method, which is applied in the field of network security, can solve problems such as the inability to achieve extraction and the inability to effectively extract semantic features, and achieve the effect of improving threat analysis capabilities and solving the problem of inability to effectively extract key relationships
CN113515598BActive Publication Date: 2021-12-07STATE GRID E COMMERCE CO LTD +2
4 Cites 0 Cited by

Patent Information

Authority / Receiving Office
CN ยท China
Patent Type
Patents(China)
Current Assignee / Owner
STATE GRID E COMMERCE CO LTD
Publication Date
2021-12-07

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

This application provides a method and device for extracting entity relations of network threat intelligence documents, which can obtain target documents and target entity sets; perform sentence splitting on target documents to obtain sentence sequences corresponding to target documents; Consecutive sentences are constructed into a sentence set corresponding to every N consecutive sentences; based on the target entity set, each target entity corresponding to each sentence set is determined; for each sentence set, each target entity corresponding to the sentence set is combined in pairs , generate at least one entity combination; for each entity combination, use the pre-built entity relationship extraction model to process the entity combination and the sentence set corresponding to the entity combination, and obtain the entity relationship result corresponding to the entity combination, realizing the network threat The entity relationship extraction at the intelligence document level solves the problem that the threat intelligence text is too long to effectively extract key relationships, and improves the blockchain network threat analysis capability.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The present application relates to the field of network security, and in particular to a method and device for extracting entity relations of network threat intelligence documents. Background technique

[0002] At present, blockchain-oriented network attacks are becoming more and more complex and concealed, making it increasingly difficult to analyze and defend against blockchain attacks. A cyber threat intelligence document is evidence-based knowledge, including scenarios, mechanisms, indicators, implications, and actionable recommendations, that is intelligence information relevant to the threat being faced. By extracting entity relationships in known network threat intelligence documents, it is possible to detect unknown network threat intelligence documents based on the extracted network threat intelligence entity relationships, and the accurate detection of network threat intelligence is crucial for analyzing and defending against blockchain attac...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More