CN107483438A - A kind of network security situation awareness early warning system and method based on big data - Google Patents
A kind of network security situation awareness early warning system and method based on big data Download PDFInfo
- Publication number
- CN107483438A CN107483438A CN201710694114.4A CN201710694114A CN107483438A CN 107483438 A CN107483438 A CN 107483438A CN 201710694114 A CN201710694114 A CN 201710694114A CN 107483438 A CN107483438 A CN 107483438A
- Authority
- CN
- China
- Prior art keywords
- information
- data
- module
- early warning
- engine
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/20—Network architectures or network communication protocols for network security for managing network security; network security policies in general
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/06—Management of faults, events, alarms or notifications
- H04L41/0631—Management of faults, events, alarms or notifications using root cause analysis; using analysis of correlation between notifications, alarms or events based on decision criteria, e.g. hierarchy, tree or time analysis
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/22—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks comprising specially adapted graphical user interfaces [GUI]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1416—Event detection, e.g. attack signature detection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1425—Traffic logging, e.g. anomaly detection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/145—Countermeasures against malicious traffic the attack involving the propagation of malware through the network, e.g. viruses, trojans or worms
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computing Systems (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Health & Medical Sciences (AREA)
- Virology (AREA)
- General Health & Medical Sciences (AREA)
- Human Computer Interaction (AREA)
- Computer And Data Communications (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a kind of network security situation awareness early warning system and method based on big data, including for collect the data collection module of data message, to the analysis and processing unit of processing data information, realize the service functional unit of various correlation functions and interface display unit for display.The present invention can realize to various viral wooden horses and using the network equipment, end host various attacks caused by accidental destruction and malice abnormal behaviour is monitored in violation of rules and regulations etc., help user to find intrusion behavior and access exception for Intranet in time.
Description
Technical field
The present invention relates to technical field of network security, specifically a kind of network security situation awareness based on big data
Early warning system and method.
Background technology
With deepening continuously for the emerging internet such as big data, cloud computing, Internet of Things, industry internet technology application, look forward to
The industry level of informatization also more and more higher, has reached unprecedented height to the degree of dependence of information system, at the same time, has also led
The fallacious message security incidents such as various new network attacks, sensitive information leakage have been caused frequently to occur.During national Internet is emergent
Heart investigation display, the high-risk Vulnerability events for being related to important industry and government department for 2015 increase, base application or common software
Leak risk highlights, and security situation is increasingly severe.Especially for super-sized enterprises as State Grid Corporation of China, company information
System scale belongs to global enterprise forefront, and safety problem more can not be ignored, because if power system is attacked by network security
The threat hit, then it is not merely the safety problem of message area, it is more likely that cause the electricity of industrial production and social life indirectly
Power supply problem, so as to influence national security.Therefore, in order to constantly tackle new security challenge, elder generation of State Grid Corporation of China rear portion
Affixed one's name to fire wall, UTM, IPS, IDS, vulnerability scanning system, Anti-Virus, terminal management system, WAF, DB-AUDIT and
Security monitor platform etc., build a lot of security perimeter.However, form and pessimistic, the Prevention-Security of existing power system
Facility defense ability is still insufficient, is mainly manifested in following three aspects:These traditional safety products, which can only all be resisted, to be come from
Security threat in terms of some, " Prevention-Security isolated island " one by one is formd, lacks the information security number to magnanimity various dimensions
According to effective fusion association analysis is carried out, cooperative effect can not be produced, it is impossible to these safety monitoring data is turned into upper layer security
Decision-making efficient resource.
Most of these traditional Prevention-Security facilities are all by analyzing the daily records of some safety means to having occurred and that
Attack is analyzed and monitored, and is substantially the thinking of Passive Defence, lacks network security situation awareness and linkage early warning
Ability, take corresponding emergency measure again after assault is detected, it is often late because now network
Attack is had occurred and that over, and attack has had resulted in irremediable loss.
In summary, the safe early warning method of Intrusion Detection Technique is easily lead to because detection method has certain defect
Situation is failed to report and reported by mistake to safe early warning, and the precision of early warning is not high, and also has an impact in performance.
The content of the invention
It is an object of the invention to overcome above-mentioned deficiency, there is provided a kind of network security situation awareness early warning based on big data
System and method
The object of the present invention is achieved like this:A kind of network security situation awareness early warning system based on big data, bag
Data collection module, analysis and processing unit, service functional unit and interface display unit are included, wherein data collection module includes number
According to engine is collected, data collection engine is used to the information data that mirror image network interface is passed to exhaustively being collected storage;Analysis
Processing unit includes protocol analysis engine, free engine, attack analysis engine and data convert engine, the protocal analysis of perceiving draws
Hold up, free engine, attack analysis engine and the data convert engine of perceiving is used to divide the information that data collection module is collected
Analysis;Business function processing unit is used for the information combination after analysis and processing unit is handled, system administration and realizes alarm function;
The data visualization that interface display unit is used to provide business function processing unit is shown, operation is provided for Subscriber Management System
Entrance.
Further, the information data that data collection engine is collected includes viral wooden horse information, accidental destruction information, malice and disobeyed
Advise information, intrusion behavior information and abnormal access information.
Further, service functional unit includes screening query function module, statistical function module, protocol data restoring function
Module, Data Format Transform functional module, real-time many condition combination ranking function module, system journal functional module, alarm work(
Can module and system management module.
Further, interface display unit includes real time comprehensive monitoring modular, whole network data display module, chart dynamic statistics
Module, multi-condition inquiry and screening module, agreement and time statistical module, in real time multi-protocols restoring data display module, danger
Attack module, system journal module and management module.
A kind of network security situation awareness method for early warning based on big data comprises the following steps:
Step 1, collect data message;
Step 2, using the data message collected in free Algorithm Analysis processing step 1;
Data message after being analyzed and processed in step 3, statistics screening step 2, generation warning information, real-time attack letter
Breath and many condition ranking information.
It is step 4, the various information generated in step 3 are displayed on the terminals.
Further, the data message collected in step 1 includes viral wooden horse information, accidental destruction information, malice to be believed in violation of rules and regulations
Breath, intrusion behavior information and abnormal access information.
The advantage of the invention is that:
The network security situation awareness early warning system based on big data and method of the present invention can be realized to hacker attacks
The constantly early warning of behavior is simultaneously traced to the source;Realize to high-end APT attacks and the constantly early warning of network weapon of war and trace to the source;Realize to work
Control the attack constantly early warning of network and underlying device;Realize that the abnormal data stream revealed individual privacy and classified papers is constantly pre-
It is alert;Realize the perception to unknown threat security postures;Realize the Situation Awareness compacted to stiff wood and trace to the source;Realize crisp to assets itself
The Situation Awareness of weak property;Realize and the security postures of website are monitored;Realize the perception to be spread through the internet to internal rogue program
And early warning.
Brief description of the drawings
Fig. 1 is a kind of structure chart of network security situation awareness early warning system based on big data of the present invention;
Fig. 2 is a kind of concrete structure diagram of network security situation awareness early warning system based on big data of the present invention.
Embodiment
The invention will be further described below in conjunction with the accompanying drawings.
The present invention is a kind of network security situation awareness early warning system based on big data, as shown in Figure 1, including data
Collector unit, analysis and processing unit, service functional unit and interface display unit, wherein data collection module include Data Collection
Engine, data collection engine are used to the information data that mirror image network interface is passed to exhaustively being collected storage, including virus wood
Horse information, accidental destruction information, malice violation information, intrusion behavior information and abnormal access information;Analysis and processing unit includes
Protocol analysis engine, free perception engine, attack analysis engine and data convert engine, protocol analysis engine, free perception are drawn
Hold up, attack analysis engine and data convert engine are used to analyze the information that data collection module is collected;At business function
Reason unit is used for the information combination after analysis and processing unit is handled, system administration and realizes alarm function;Interface display unit
For the data visualization displaying for providing business function processing unit, operation entry is provided for Subscriber Management System.
Wherein, as shown in Figure 2, service functional unit includes screening query function module, statistical function module, agreement number
According to restoring function module, Data Format Transform functional module, real-time many condition combination ranking function module, system journal function mould
Block, alarm function module and system management module.
Interface display unit includes real time comprehensive monitoring modular, whole network data display module, chart dynamic statistics module, more
Condition query and screening module, agreement and time statistical module, multi-protocols restoring data display module, real-time critical attacks behavior
Module, system journal module and management module.
The present invention is realized in warning function:First by the information data collected by distinctive free algorithm,
Redefine hacker attacks behavior and the operation of rogue program is intended to, backtracking is perceived by free target, more directly finds net
Security risk present in network and hacker's behavior, hacker attacks monitoring is contained comprehensively, network is anti-to divulge a secret, unknown behavior attack etc.
Various hacker's behaviors;Where accurately can finding problem in nearly thousand kinds of public and private agreement, and send early warning;
Secondly, interface display unit can intuitively show interface, allow enterprise security situation to have a panoramic view, either converge
Report, still receives visit, is all the optimal embodiment mode of enterprise image.
Finally, the network security situation awareness early warning system of the invention based on big data can be applied to government organs,
Energy industry, transportation industry, industrial trade, education sector, financial industry, medical industry, information industry, real estate, water conservancy
Industry etc., it ensure that the privacy and safety of all trades and professions.
Present invention also offers a kind of network security situation awareness method for early warning based on big data, including following step in addition
Suddenly:
Step 1, collect data message, including viral wooden horse information, accidental destruction information, malice violation information, invasion row
For information and abnormal access information, information is mainly derived from the typing and internet using the relevant enterprise unit of the system
The relevant information of real-time release;
Step 2, using the data message collected in free Algorithm Analysis processing step 1, this algorithm redefine hacker and enter
Invade behavior and the operation of rogue program is intended to, backtracking is perceived by free target, more directly finds safety present in network
Risk and hacker's behavior, where can accurately finding problem in nearly thousand kinds of public and private agreement;
Data message after being analyzed and processed in step 3, statistics screening step 2, generation warning information, real-time attack letter
The information such as breath and many condition ranking information.
It is step 4, the various information generated in step 3 are displayed on the terminals.
Finally it should be noted that:Obviously, above-described embodiment is only intended to clearly illustrate the application example, and simultaneously
The non-restriction to embodiment.For those of ordinary skill in the field, can also do on the basis of the above description
Go out other various forms of changes or variation.There is no necessity and possibility to exhaust all the enbodiments.And thus drawn
Among the obvious changes or variations that Shen goes out is still in the protection domain of the application type.
Claims (6)
1. a kind of network security situation awareness early warning system based on big data, it is characterised in that including data collection module, divide
Processing unit, service functional unit and interface display unit are analysed,
The data collection module includes data collection engine, and the data collection engine is used for the information for being passed to mirror image network interface
Data are exhaustively collected storage;
The analysis and processing unit includes protocol analysis engine, free perception engine, attack analysis engine and data convert engine,
The protocol analysis engine, free engine, attack analysis engine and the data convert engine of perceiving are used for the Data Collection list
The information that member is collected is analyzed;
The business function processing unit is used for the information combination after analysis and processing unit is handled, system administration and realizes alarm
Function;
The data visualization that the interface display unit is used to provide business function processing unit is shown, is Subscriber Management System
Operation entry is provided.
A kind of 2. network security situation awareness early warning system based on big data according to claim 1, it is characterised in that
The information data that the data collection engine is collected includes viral wooden horse information, accidental destruction information, malice violation information, invasion
Behavioural information and abnormal access information.
A kind of 3. network security situation awareness early warning system based on big data according to claim 1, it is characterised in that
The service functional unit includes screening query function module, statistical function module, protocol data restoring function module, data lattice
Formula conversion functional module, real-time many condition combination ranking function module, system journal functional module, alarm function module and system
Management module.
A kind of 4. network security situation awareness early warning system based on big data according to claim 1, it is characterised in that
The interface display unit includes real time comprehensive monitoring modular, whole network data display module, chart dynamic statistics module, many condition
Inquiry and screening module, agreement and time statistical module, multi-protocols restoring data display module, real-time critical attacks behavior mould
Block, system journal module and management module.
5. a kind of network security situation awareness method for early warning based on big data, it is characterised in that comprise the following steps:
Step 1, collect data message;
Step 2, using the data message collected in free Algorithm Analysis processing step 1;
Step 3, statistics screening step 2 in analyze and process after data message, generation warning information, real-time attack information and
Many condition ranking information.
It is step 4, the various information generated in step 3 are displayed on the terminals.
A kind of 6. network security situation awareness method for early warning based on big data according to claim 5, it is characterised in that
The data message collected in the step 1 includes viral wooden horse information, accidental destruction information, malice violation information, intrusion behavior
Information and abnormal access information.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710694114.4A CN107483438A (en) | 2017-08-15 | 2017-08-15 | A kind of network security situation awareness early warning system and method based on big data |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710694114.4A CN107483438A (en) | 2017-08-15 | 2017-08-15 | A kind of network security situation awareness early warning system and method based on big data |
Publications (1)
Publication Number | Publication Date |
---|---|
CN107483438A true CN107483438A (en) | 2017-12-15 |
Family
ID=60600409
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201710694114.4A Pending CN107483438A (en) | 2017-08-15 | 2017-08-15 | A kind of network security situation awareness early warning system and method based on big data |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN107483438A (en) |
Cited By (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108200045A (en) * | 2017-12-28 | 2018-06-22 | 山东渔翁信息技术股份有限公司 | Security Situation Awareness Systems and method |
CN108512896A (en) * | 2018-02-06 | 2018-09-07 | 北京东方棱镜科技有限公司 | Mobile Internet security postures cognition technology based on big data and device |
CN108810014A (en) * | 2018-06-29 | 2018-11-13 | 北京奇虎科技有限公司 | Attack alarm method and device |
CN108833397A (en) * | 2018-06-08 | 2018-11-16 | 武汉思普崚技术有限公司 | A kind of big data safety analysis plateform system based on network security |
CN109286629A (en) * | 2018-10-12 | 2019-01-29 | 四川长虹电器股份有限公司 | A kind of data visualization situation early warning system based on the attack of WEB website |
CN109327433A (en) * | 2018-09-03 | 2019-02-12 | 北京智游网安科技有限公司 | Threat cognitive method and system based on Run-time scenario analysis |
CN109492994A (en) * | 2018-10-29 | 2019-03-19 | 成都思维世纪科技有限责任公司 | A kind of three-dimensional all-position safety management platform based on big data |
CN109714323A (en) * | 2018-12-17 | 2019-05-03 | 清创网御(合肥)科技有限公司 | A kind of the whole network dangerous criminal platform and its working method |
CN111131338A (en) * | 2020-04-01 | 2020-05-08 | 深圳市云盾科技有限公司 | Method and system for detecting safety of Internet of things at perception situation and storage medium |
CN111832027A (en) * | 2020-06-29 | 2020-10-27 | 郑州云智信安安全技术有限公司 | Network intrusion safety early warning system based on cloud computing |
CN112187823A (en) * | 2020-10-13 | 2021-01-05 | 绍兴文理学院 | Internet of things availability evaluation method for malicious program diffusion under fog computing architecture |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104270372A (en) * | 2014-10-11 | 2015-01-07 | 国家电网公司 | Parameter self-adaption network security posture quantitative evaluation method |
CN104753946A (en) * | 2015-04-01 | 2015-07-01 | 浪潮电子信息产业股份有限公司 | Security analysis framework based on network traffic meta data |
CN105553957A (en) * | 2015-12-09 | 2016-05-04 | 国家电网公司 | Network safety situation awareness early-warning method and system based big data |
US20170163668A1 (en) * | 2012-03-22 | 2017-06-08 | Los Alamos National Security, Llc | Path scanning for the detection of anomalous subgraphs and use of dns requests and host agents for anomaly/change detection and network situational awareness |
WO2017105340A1 (en) * | 2015-12-14 | 2017-06-22 | Certis Cisco Security Pte Ltd | System and method for 3d abstract object modelling of high entropic information security threats |
-
2017
- 2017-08-15 CN CN201710694114.4A patent/CN107483438A/en active Pending
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20170163668A1 (en) * | 2012-03-22 | 2017-06-08 | Los Alamos National Security, Llc | Path scanning for the detection of anomalous subgraphs and use of dns requests and host agents for anomaly/change detection and network situational awareness |
CN104270372A (en) * | 2014-10-11 | 2015-01-07 | 国家电网公司 | Parameter self-adaption network security posture quantitative evaluation method |
CN104753946A (en) * | 2015-04-01 | 2015-07-01 | 浪潮电子信息产业股份有限公司 | Security analysis framework based on network traffic meta data |
CN105553957A (en) * | 2015-12-09 | 2016-05-04 | 国家电网公司 | Network safety situation awareness early-warning method and system based big data |
WO2017105340A1 (en) * | 2015-12-14 | 2017-06-22 | Certis Cisco Security Pte Ltd | System and method for 3d abstract object modelling of high entropic information security threats |
Cited By (14)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108200045A (en) * | 2017-12-28 | 2018-06-22 | 山东渔翁信息技术股份有限公司 | Security Situation Awareness Systems and method |
CN108512896A (en) * | 2018-02-06 | 2018-09-07 | 北京东方棱镜科技有限公司 | Mobile Internet security postures cognition technology based on big data and device |
CN108833397A (en) * | 2018-06-08 | 2018-11-16 | 武汉思普崚技术有限公司 | A kind of big data safety analysis plateform system based on network security |
CN108810014B (en) * | 2018-06-29 | 2021-06-04 | 北京奇虎科技有限公司 | Attack event warning method and device |
CN108810014A (en) * | 2018-06-29 | 2018-11-13 | 北京奇虎科技有限公司 | Attack alarm method and device |
CN109327433A (en) * | 2018-09-03 | 2019-02-12 | 北京智游网安科技有限公司 | Threat cognitive method and system based on Run-time scenario analysis |
CN109327433B (en) * | 2018-09-03 | 2022-05-17 | 北京智游网安科技有限公司 | Threat perception method and system based on operation scene analysis |
CN109286629A (en) * | 2018-10-12 | 2019-01-29 | 四川长虹电器股份有限公司 | A kind of data visualization situation early warning system based on the attack of WEB website |
CN109492994A (en) * | 2018-10-29 | 2019-03-19 | 成都思维世纪科技有限责任公司 | A kind of three-dimensional all-position safety management platform based on big data |
CN109714323B (en) * | 2018-12-17 | 2021-02-02 | 清创网御(合肥)科技有限公司 | Whole-network danger sensing platform and working method thereof |
CN109714323A (en) * | 2018-12-17 | 2019-05-03 | 清创网御(合肥)科技有限公司 | A kind of the whole network dangerous criminal platform and its working method |
CN111131338A (en) * | 2020-04-01 | 2020-05-08 | 深圳市云盾科技有限公司 | Method and system for detecting safety of Internet of things at perception situation and storage medium |
CN111832027A (en) * | 2020-06-29 | 2020-10-27 | 郑州云智信安安全技术有限公司 | Network intrusion safety early warning system based on cloud computing |
CN112187823A (en) * | 2020-10-13 | 2021-01-05 | 绍兴文理学院 | Internet of things availability evaluation method for malicious program diffusion under fog computing architecture |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN107483438A (en) | A kind of network security situation awareness early warning system and method based on big data | |
CN104509034B (en) | Pattern merges to identify malicious act | |
US9386036B2 (en) | Method for detecting and preventing a DDoS attack using cloud computing, and server | |
CN111800395A (en) | Threat information defense method and system | |
CN107046543A (en) | A kind of threat intelligence analysis system traced to the source towards attack | |
CN106209826A (en) | A kind of safety case investigation method of Network Security Device monitoring | |
CN112039862B (en) | Multi-dimensional stereo network-oriented security event early warning method | |
CN108270716A (en) | A kind of audit of information security method based on cloud computing | |
US9961047B2 (en) | Network security management | |
CN116614277A (en) | Network security supervision system and method based on machine learning and abnormal behavior analysis | |
CN115021997B (en) | Network intrusion detection system based on machine learning | |
CN114143064A (en) | Multi-source network security alarm event tracing and automatic processing method and device | |
KR100846835B1 (en) | Method and apparatus for Security Event Correlation Analysis based on Context Language | |
CN115941317A (en) | Network security comprehensive analysis and situation awareness platform | |
CN117375985A (en) | Method and device for determining security risk index, storage medium and electronic device | |
CN112596984A (en) | Data security situation sensing system under weak isolation environment of service | |
CN114238279A (en) | Database security protection method, device, system, storage medium and electronic equipment | |
Azmi Bin Mustafa Sulaiman et al. | SIEM Network Behaviour Monitoring Framework using Deep Learning Approach for Campus Network Infrastructure | |
CN111726355A (en) | Network security situation perception system based on big data | |
Xu et al. | Method of cumulative anomaly identification for security database based on discrete markov chain | |
Du et al. | A Method of Network Behavior Recognition and Attack Scenario Reconstruction for Attack Kill Chain | |
Li et al. | Overview of intrusion detection systems | |
Li et al. | Implementation of the distributed hierarchical security operation center using mobile agent group | |
Wang et al. | Structure and key technologies of nuclear power plant network security situational awareness platform | |
Arora et al. | Home Network Security Incorporating Machine Learning Algorithms In Internet Of Medical Things |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
CB02 | Change of applicant information | ||
CB02 | Change of applicant information |
Address after: 255000 Zibo hi tech Zone, Shandong hi tech Pioneer Park D seat 1205, 1206, 1207, 1208, 1209, 1210 Applicant after: Warner Network Technology Co., Ltd Address before: 255000 Zibo hi tech Zone, Shandong hi tech Pioneer Park D seat 1205, 1206, 1207, 1208, 1209, 1210 Applicant before: SHANDONG HUANUO NETWORK TECHNOLOGY Co.,Ltd. |
|
RJ01 | Rejection of invention patent application after publication | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20171215 |