Unlock instant, AI-driven research and patent intelligence for your innovation.

Network service identification method and device, equipment and medium

A technology of network service and identification method, applied in the fields of equipment and medium, network service identification method and device, can solve the problems of low identification efficiency and low efficiency, and achieve the effect of improving identification efficiency

Active Publication Date: 2021-11-09
杭州安恒信息安全技术有限公司
View PDF5 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] Existing traffic-based intrusion detection systems rely on detecting all traffic and identifying unsafe traffic in the traffic according to the keywords in the signature database to achieve detection results. Not only do all traffic need to be detected during detection, the recognition efficiency is low, and all traffic needs to be saved. All data packets of unidentified services, and if the same unidentified service appears multiple times, the existing intrusion detection system will save the content of each session. Faced with a large number of possible identical session data, subsequent manual identification is inefficient

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Network service identification method and device, equipment and medium
  • Network service identification method and device, equipment and medium
  • Network service identification method and device, equipment and medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0043] The following will clearly and completely describe the technical solutions in the embodiments of the application with reference to the drawings in the embodiments of the application. Apparently, the described embodiments are only some of the embodiments of the application, not all of them. Based on the embodiments in this application, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the scope of protection of this application.

[0044] Existing traffic-based intrusion detection systems rely on detecting all traffic and identifying unsafe traffic in the traffic according to the keywords in the signature database to achieve detection results. Not only do all traffic need to be detected during detection, the recognition efficiency is low, and all traffic needs to be saved. All data packets of unidentified services, and if the same unidentified service appears multiple times, the existing intrusion detection sys...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a network service identification method and device, equipment and a medium. The method comprises the steps: monitoring one or two previous data packets in network traffic after a session is established to obtain a target data packet; matching the target data packet based on a preset rule base, wherein the preset rule base comprises rules corresponding to each network service; if the matching is successful, outputting a corresponding network service identification result; if the matching fails, storing the target data packet; and determining a rule of a corresponding network service based on the stored target data packet to obtain a new rule, and adding the new rule to the preset rule base. Therefore, the identification efficiency of the network service can be improved.

Description

technical field [0001] The present application relates to the technical field of network service identification, in particular to a network service identification method, device, equipment and medium. Background technique [0002] The identification of network services can be used to identify vulnerability information, monitor the corresponding network space environment, etc. Existing vulnerability scanners mainly identify network services through port scanning, and further identify corresponding vulnerabilities through service information. The active scanning mode has certain limitations. , it is necessary for the security personnel to organize the network request that is precisely satisfied with the target service, and the target port will generate a response; [0003] Existing traffic-based intrusion detection systems rely on detecting all traffic and identifying unsafe traffic in the traffic according to the keywords in the signature database to achieve detection results...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06G06K9/62G06N20/00
CPCH04L63/1408H04L63/1433G06N20/00G06F18/23213Y02D30/50
Inventor 莫晓龙李乐乐
Owner 杭州安恒信息安全技术有限公司