APT attack detection method, device and system of server and storage medium

An attack detection and server technology, applied in the field of information security, can solve problems such as user information theft and server operation impact, and achieve the effect of improving information security

Pending Publication Date: 2022-04-15
HANGZHOU ANHENG INFORMATION TECH CO LTD
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] However, since the current server maintainers cannot identify whether the server is being attacked by APT, they cannot take defensive measures against the attack, which will affect the normal server operation and even steal user information

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • APT attack detection method, device and system of server and storage medium
  • APT attack detection method, device and system of server and storage medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0043] The embodiment of the present invention provides a server APT attack detection method, device, system and computer-readable storage medium, which can realize the detection of the APT attack situation of the server during use, and prompt the APT attack in time, so that the server can be detected in time. Take defensive measures to improve information security.

[0044] In order to make the purpose, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the drawings in the embodiments of the present invention. Obviously, the described embodiments It is a part of embodiments of the present invention, but not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope o...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses an APT (Advanced Persistent Threat) attack detection method for a server, which is characterized by comprising the following steps: acquiring flow information corresponding to a server IP (Internet Protocol); identifying APT attack traffic information from the traffic information; and judging whether the server is subjected to the APT attack according to the APT attack traffic information, and if so, sending APT attack prompt information. Flow information corresponding to a server IP is obtained, APT attack flow information is recognized from the flow information, then whether the corresponding server is subjected to APT attack is further judged according to the APT attack flow information, and APT attack prompt information is sent out when it is determined that the server is subjected to the APT attack; according to the method, the APT attack condition of the server can be detected in the using process, APT attack prompting is carried out in time, defense measures can be taken for the server in time, and the information safety is improved.

Description

technical field [0001] The present invention relates to the technical field of information security, in particular to a server APT attack detection method, device, system and computer-readable storage medium. Background technique [0002] APT attack technology is an important capability for the development of intelligence organizations and cyber warfare forces in various countries, and it is also an important tool for current black industry groups to profit. With the increasingly intensified struggles of various countries and the prosperity of my country's Internet economy in the future, various information systems in our country will become important targets of APT attacks. For a server, good daily operation is very important. More and more organizations are paying attention to the daily operation of servers. [0003] However, since the current server maintainers cannot identify whether the server is being attacked by APT, they cannot take defensive measures against the at...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/40
Inventor 黄晨静子范渊刘博
Owner HANGZHOU ANHENG INFORMATION TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap