Correlation-based hierarchical distributed intrusion detection system

An intrusion detection system and correlation technology, applied in the field of network communication, can solve the problems that the intrusion detection system cannot effectively resist intrusion attacks, cannot cooperate with each other, and the intrusion detection system is difficult to be competent, so as to easily expand the detection range and reduce the cost of cooperation. , The effect of strong fault tolerance

Active Publication Date: 2022-01-21
TIANJIN QISUO PRECISION ELECTROMECHANICAL TECH
View PDF3 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] With the expansion of network scale and the increase of complexity of intrusion methods, it is difficult for a single intrusion detection system (IDS) to effectively defend against intrusion attacks
However, different vendors cannot cooperate with each other, resulting in a large-scale heterogeneous network environment, and inevitably there are security holes.
In the high-speed network environment, in the face of increasingly complex attack methods, a single intrusion detection system is already difficult to do

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Correlation-based hierarchical distributed intrusion detection system
  • Correlation-based hierarchical distributed intrusion detection system
  • Correlation-based hierarchical distributed intrusion detection system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0039] Embodiments of the present invention will be described in further detail below in conjunction with the accompanying drawings.

[0040] The present invention uses IDXP as the communication protocol between agents, and provides a hierarchical distributed intrusion detection system based on correlation, such as figure 1 As shown, it consists of multiple configurable and independent intrusion detection systems (IDS). Each IDS uses the IDXP communication protocol for data interaction. The cooperative relationship between IDS is determined by the configuration file, which makes the system have Great flexibility. Each IDS in the system can work as a stand-alone version.

[0041] Such as figure 2 As shown, each IDS in the system is composed of a detection agent subsystem, a distributed cooperation subsystem and an IDXP communication protocol module, and both the agent subsystem and the distributed cooperation subsystem support the IDXP communication protocol. In IDS, the de...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to a correlation-based hierarchical distributed intrusion detection system, which is technically characterized by comprising a plurality of intrusion detection systems; each intrusion detection system consists of a detection agent subsystem, a distributed cooperation subsystem and an IDXP communication protocol module; intrusion detection information interaction is carried out between the detection agent subsystem and the distributed cooperation subsystem and between the intrusion detection systems through the IDXP communication protocol modules; and the distributed cooperation subsystem is provided therein with a correlation-based distributed cooperation model. The system is reasonable in design, constructs a cooperation model based on the correlation between agents, uses an IDXP communication protocol in intrusion detection standardization, can effectively resist more and more complex attack means, effectively reduces the distributed cooperation cost of the system while guaranteeing the system detection accuracy, and has the characteristics of strong fault-tolerant capability, easy system expansion, wide detection range and the like.

Description

technical field [0001] The invention belongs to the field of network communication and relates to network intrusion detection technology, in particular to a correlation-based hierarchical distributed intrusion detection system. Background technique [0002] Network intrusion refers to any behavior that attempts to destroy the integrity, confidentiality and availability of resources, including the misuse of system resources by users. With the expansion of Internet coverage, the rapid growth of the number of users, and the continuous development of network technology, various attacks and damages to the network are becoming more and more serious. As the second line of defense behind the firewall, intrusion detection has become an important part of modern network security technology. component. [0003] At present, the solutions adopted to solve network security problems generally include firewalls, data encryption, authentication, etc. These measures have a good preventive eff...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/40H04L67/1001H04L41/14
CPCH04L63/1416H04L41/145
Inventor 盛郁白梦莹赵文宇于潼
Owner TIANJIN QISUO PRECISION ELECTROMECHANICAL TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap