A network intrusion detection method, device, equipment and medium

By identifying and comparing character groups of preset symbols or symbol pairs in traffic requests, this method solves the problems of low efficiency and low accuracy in existing network intrusion detection methods, achieving faster and more accurate network intrusion detection, and is applicable to devices such as mobile phones, PCs, tablets, and servers.

CN116846649BActive Publication Date: 2026-06-09CHINA TELECOM CORP LTD TECHNOLOGY INNOVATION CENTER +1

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Patents(China)
Current Assignee / Owner
CHINA TELECOM CORP LTD TECHNOLOGY INNOVATION CENTER
Filing Date
2023-07-07
Publication Date
2026-06-09

AI Technical Summary

Technical Problem

Existing network intrusion detection methods are inefficient and inaccurate when facing new types of attacks, and rule base maintenance is difficult. Machine learning or deep learning methods require a large number of data samples and consume a lot of resources.

Method used

By identifying character groups of preset symbols or symbol pairs in traffic requests, the target statement type is determined, and compared with pre-saved malicious characters to determine whether malicious characters are contained, thereby identifying network intrusion requests.

Benefits of technology

It improves the efficiency and accuracy of network intrusion detection, reduces the false negative rate and resource consumption, and can detect polymorphic network attacks and easily update attack types.

✦ Generated by Eureka AI based on patent content.

Smart Images

  • Figure CN116846649B_ABST
    Figure CN116846649B_ABST
Patent Text Reader

Abstract

The application provides a network intrusion detection method, device, equipment and medium, identifies a character group containing a preset symbol in a to-be-detected traffic request, and determines a target sentence type corresponding to each character group according to the preset symbol or preset symbol pair contained in each character group and the sentence type corresponding to the preset symbol or preset symbol pair, thereby improving the efficiency of network intrusion detection; for the character group of each target sentence type, whether the character group contains malicious characters is determined according to the characters contained in the character group and the malicious characters corresponding to the target sentence type and pre-stored, if any character group contains malicious characters, the traffic request is determined to be a network intrusion request, thereby improving the efficiency and accuracy of network intrusion detection.
Need to check novelty before this filing date? Find Prior Art