Virtual network security management and control method based on multistage alarm and linkage defense

A virtual network and security control technology, applied in the field of data security, can solve the problems of poor detection performance of the intrusion detection system, achieve the effect of solving the problem of aggregation effectiveness, reducing redundant alarms, and reducing false alarm rates

Pending Publication Date: 2022-02-18
GLOBAL ENERGY INTERCONNECTION RES INST CO LTD +2
View PDF0 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0009] In view of this, the embodiment of the present invention provides a virtual network security management and control method based on multi-level alarm and linkage defense to solve the technical problem of poor detection performance of the intrusion detection system in the prior art

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Virtual network security management and control method based on multistage alarm and linkage defense
  • Virtual network security management and control method based on multistage alarm and linkage defense
  • Virtual network security management and control method based on multistage alarm and linkage defense

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0037] In order to make the purpose, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the drawings in the embodiments of the present invention. Obviously, the described embodiments It is a part of embodiments of the present invention, but not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by those skilled in the art without making creative efforts belong to the protection scope of the present invention.

[0038] The embodiment of the present invention provides a virtual network security management and control method based on multi-level alarm and linkage defense, such as figure 1 As shown, the method includes the following steps:

[0039] Step S101: Remove false alarms from the original alarms according to attributes of the original alarms to obtain an a...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a virtual network security control method based on multi-level alarm and linkage defense, and the method comprises the following steps: removing false alarms in original alarms according to attributes of the original alarms to obtain attack alarms; aggregating the attack alarms to obtain an aggregated alarm sequence; and based on the aggregated alarm sequence, obtaining an alarm association graph according to a Markov chain model and a frequent item set association rule. According to the method, firstly, false alarm removal and alarm aggregation preprocessing are carried out on alarms, so that redundant alarms are reduced, and the false alarm rate is reduced; and then correlation analysis is carried out on the alarms, the transition probability between the alarms is quantitatively and objectively calculated based on an alarm correlation method of a Markov chain and a frequent item set correlation rule, and logic correlation between alarm information is discovered, so an attack intention is identified, and a basis is provided for security defense.

Description

technical field [0001] The invention relates to the technical field of data security, in particular to a virtual network security management and control method based on multi-level alarm and linkage defense. Background technique [0002] Software Defined Network (SDN) is an emerging architecture. By separating control and forwarding, the control logic of switching devices in the network is concentrated on one computing device, which improves network management and configuration capabilities. At the same time, its open interface and programmable features make network management simpler, more dynamic and more flexible. SDN is mainly composed of an application layer, a control plane, and a data plane. The application layer meets the user's diverse business customization needs through an open northbound interface. The control plane has global network topology monitoring and infrastructure management capabilities, and receives and processes user requests through the northbound i...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/40H04L41/0604H04L41/0631
CPCH04L63/1441H04L41/0604H04L41/0631
Inventor 周诚李伟伟曹婉恬张铮
Owner GLOBAL ENERGY INTERCONNECTION RES INST CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap