Evaluation methods, devices, computer equipment, and media for cloud service protection strategies

By acquiring connection attribute information of cloud service interfaces, performing behavioral semantic judgment and simulating attacks, and monitoring the program's return connection status, the problem of low efficiency in cloud service protection strategy evaluation in existing technologies is solved, and efficient and automated protection strategy evaluation and optimization are achieved.

CN120811686BActive Publication Date: 2026-06-30NO 15 INST OF CHINA ELECTRONICS TECH GRP

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Patents(China)
Current Assignee / Owner
NO 15 INST OF CHINA ELECTRONICS TECH GRP
Filing Date
2025-07-24
Publication Date
2026-06-30

AI Technical Summary

Technical Problem

In existing technologies, the evaluation efficiency of cloud service protection strategies is low, the degree of automation is low, and it is impossible to effectively identify and verify vulnerabilities and configuration defects of cloud interfaces.

Method used

By obtaining the connection attribute information of the cloud service interface, behavioral semantic judgment is performed, behavioral semantic tags are generated, a data listening end and attack simulation code file are created, the attacker's upload path is simulated and the program's return connection status is monitored, and the evaluation results of the protection strategy are determined.

Benefits of technology

It improves the efficiency and accuracy of protection strategy evaluation, and can automatically verify the penetration of firewalls, identify potential security risks, and optimize protection strategies.

✦ Generated by Eureka AI based on patent content.

Smart Images

  • Figure CN120811686B_ABST
    Figure CN120811686B_ABST
Patent Text Reader

Abstract

This disclosure provides a method, apparatus, computer device, and medium for evaluating cloud service protection strategies, including: acquiring connection attribute information of a cloud service interface; performing behavioral semantic judgment on the connection attribute information of the cloud service interface to obtain a behavioral semantic tag corresponding to the cloud service interface; determining whether the cloud service interface meets the scheduling execution conditions based on the behavioral semantic tag; if the cloud service interface meets the scheduling execution conditions based on the behavioral semantic tag, creating a data monitoring terminal and an attack simulation code file; sending a data upload instruction to the cloud service interface to instruct the cloud service interface to simulate an attacker's upload path and upload the attack simulation code file to the target server through the attacker's upload path; and determining the evaluation result of the cloud service protection strategy based on the program return status of the cloud service interface monitored by the data monitoring terminal. This effectively improves the efficiency of protection strategy evaluation.
Need to check novelty before this filing date? Find Prior Art