CN107483438A - A kind of network security situation awareness early warning system and method based on big data - Google Patents

A kind of network security situation awareness early warning system and method based on big data Download PDF

Info

Publication number
CN107483438A
CN107483438A CN201710694114.4A CN201710694114A CN107483438A CN 107483438 A CN107483438 A CN 107483438A CN 201710694114 A CN201710694114 A CN 201710694114A CN 107483438 A CN107483438 A CN 107483438A
Authority
CN
China
Prior art keywords
information
data
module
early warning
engine
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710694114.4A
Other languages
Chinese (zh)
Inventor
邢长宝
魏巍
徐志飞
王绪哲
杨镇宇
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shandong Huanuo Network Technology Co Ltd
Original Assignee
Shandong Huanuo Network Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shandong Huanuo Network Technology Co Ltd filed Critical Shandong Huanuo Network Technology Co Ltd
Priority to CN201710694114.4A priority Critical patent/CN107483438A/en
Publication of CN107483438A publication Critical patent/CN107483438A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/06Management of faults, events, alarms or notifications
    • H04L41/0631Management of faults, events, alarms or notifications using root cause analysis; using analysis of correlation between notifications, alarms or events based on decision criteria, e.g. hierarchy, tree or time analysis
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/22Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks comprising specially adapted graphical user interfaces [GUI]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • H04L63/1416Event detection, e.g. attack signature detection
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • H04L63/1425Traffic logging, e.g. anomaly detection
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1441Countermeasures against malicious traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1441Countermeasures against malicious traffic
    • H04L63/145Countermeasures against malicious traffic the attack involving the propagation of malware through the network, e.g. viruses, trojans or worms

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computing Systems (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • Virology (AREA)
  • General Health & Medical Sciences (AREA)
  • Human Computer Interaction (AREA)
  • Computer And Data Communications (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention discloses a kind of network security situation awareness early warning system and method based on big data, including for collect the data collection module of data message, to the analysis and processing unit of processing data information, realize the service functional unit of various correlation functions and interface display unit for display.The present invention can realize to various viral wooden horses and using the network equipment, end host various attacks caused by accidental destruction and malice abnormal behaviour is monitored in violation of rules and regulations etc., help user to find intrusion behavior and access exception for Intranet in time.

Description

A kind of network security situation awareness early warning system and method based on big data
Technical field
The present invention relates to technical field of network security, specifically a kind of network security situation awareness based on big data Early warning system and method.
Background technology
With deepening continuously for the emerging internet such as big data, cloud computing, Internet of Things, industry internet technology application, look forward to The industry level of informatization also more and more higher, has reached unprecedented height to the degree of dependence of information system, at the same time, has also led The fallacious message security incidents such as various new network attacks, sensitive information leakage have been caused frequently to occur.During national Internet is emergent Heart investigation display, the high-risk Vulnerability events for being related to important industry and government department for 2015 increase, base application or common software Leak risk highlights, and security situation is increasingly severe.Especially for super-sized enterprises as State Grid Corporation of China, company information System scale belongs to global enterprise forefront, and safety problem more can not be ignored, because if power system is attacked by network security The threat hit, then it is not merely the safety problem of message area, it is more likely that cause the electricity of industrial production and social life indirectly Power supply problem, so as to influence national security.Therefore, in order to constantly tackle new security challenge, elder generation of State Grid Corporation of China rear portion Affixed one's name to fire wall, UTM, IPS, IDS, vulnerability scanning system, Anti-Virus, terminal management system, WAF, DB-AUDIT and Security monitor platform etc., build a lot of security perimeter.However, form and pessimistic, the Prevention-Security of existing power system Facility defense ability is still insufficient, is mainly manifested in following three aspects:These traditional safety products, which can only all be resisted, to be come from Security threat in terms of some, " Prevention-Security isolated island " one by one is formd, lacks the information security number to magnanimity various dimensions According to effective fusion association analysis is carried out, cooperative effect can not be produced, it is impossible to these safety monitoring data is turned into upper layer security Decision-making efficient resource.
Most of these traditional Prevention-Security facilities are all by analyzing the daily records of some safety means to having occurred and that Attack is analyzed and monitored, and is substantially the thinking of Passive Defence, lacks network security situation awareness and linkage early warning Ability, take corresponding emergency measure again after assault is detected, it is often late because now network Attack is had occurred and that over, and attack has had resulted in irremediable loss.
In summary, the safe early warning method of Intrusion Detection Technique is easily lead to because detection method has certain defect Situation is failed to report and reported by mistake to safe early warning, and the precision of early warning is not high, and also has an impact in performance.
The content of the invention
It is an object of the invention to overcome above-mentioned deficiency, there is provided a kind of network security situation awareness early warning based on big data System and method
The object of the present invention is achieved like this:A kind of network security situation awareness early warning system based on big data, bag Data collection module, analysis and processing unit, service functional unit and interface display unit are included, wherein data collection module includes number According to engine is collected, data collection engine is used to the information data that mirror image network interface is passed to exhaustively being collected storage;Analysis Processing unit includes protocol analysis engine, free engine, attack analysis engine and data convert engine, the protocal analysis of perceiving draws Hold up, free engine, attack analysis engine and the data convert engine of perceiving is used to divide the information that data collection module is collected Analysis;Business function processing unit is used for the information combination after analysis and processing unit is handled, system administration and realizes alarm function; The data visualization that interface display unit is used to provide business function processing unit is shown, operation is provided for Subscriber Management System Entrance.
Further, the information data that data collection engine is collected includes viral wooden horse information, accidental destruction information, malice and disobeyed Advise information, intrusion behavior information and abnormal access information.
Further, service functional unit includes screening query function module, statistical function module, protocol data restoring function Module, Data Format Transform functional module, real-time many condition combination ranking function module, system journal functional module, alarm work( Can module and system management module.
Further, interface display unit includes real time comprehensive monitoring modular, whole network data display module, chart dynamic statistics Module, multi-condition inquiry and screening module, agreement and time statistical module, in real time multi-protocols restoring data display module, danger Attack module, system journal module and management module.
A kind of network security situation awareness method for early warning based on big data comprises the following steps:
Step 1, collect data message;
Step 2, using the data message collected in free Algorithm Analysis processing step 1;
Data message after being analyzed and processed in step 3, statistics screening step 2, generation warning information, real-time attack letter Breath and many condition ranking information.
It is step 4, the various information generated in step 3 are displayed on the terminals.
Further, the data message collected in step 1 includes viral wooden horse information, accidental destruction information, malice to be believed in violation of rules and regulations Breath, intrusion behavior information and abnormal access information.
The advantage of the invention is that:
The network security situation awareness early warning system based on big data and method of the present invention can be realized to hacker attacks The constantly early warning of behavior is simultaneously traced to the source;Realize to high-end APT attacks and the constantly early warning of network weapon of war and trace to the source;Realize to work Control the attack constantly early warning of network and underlying device;Realize that the abnormal data stream revealed individual privacy and classified papers is constantly pre- It is alert;Realize the perception to unknown threat security postures;Realize the Situation Awareness compacted to stiff wood and trace to the source;Realize crisp to assets itself The Situation Awareness of weak property;Realize and the security postures of website are monitored;Realize the perception to be spread through the internet to internal rogue program And early warning.
Brief description of the drawings
Fig. 1 is a kind of structure chart of network security situation awareness early warning system based on big data of the present invention;
Fig. 2 is a kind of concrete structure diagram of network security situation awareness early warning system based on big data of the present invention.
Embodiment
The invention will be further described below in conjunction with the accompanying drawings.
The present invention is a kind of network security situation awareness early warning system based on big data, as shown in Figure 1, including data Collector unit, analysis and processing unit, service functional unit and interface display unit, wherein data collection module include Data Collection Engine, data collection engine are used to the information data that mirror image network interface is passed to exhaustively being collected storage, including virus wood Horse information, accidental destruction information, malice violation information, intrusion behavior information and abnormal access information;Analysis and processing unit includes Protocol analysis engine, free perception engine, attack analysis engine and data convert engine, protocol analysis engine, free perception are drawn Hold up, attack analysis engine and data convert engine are used to analyze the information that data collection module is collected;At business function Reason unit is used for the information combination after analysis and processing unit is handled, system administration and realizes alarm function;Interface display unit For the data visualization displaying for providing business function processing unit, operation entry is provided for Subscriber Management System.
Wherein, as shown in Figure 2, service functional unit includes screening query function module, statistical function module, agreement number According to restoring function module, Data Format Transform functional module, real-time many condition combination ranking function module, system journal function mould Block, alarm function module and system management module.
Interface display unit includes real time comprehensive monitoring modular, whole network data display module, chart dynamic statistics module, more Condition query and screening module, agreement and time statistical module, multi-protocols restoring data display module, real-time critical attacks behavior Module, system journal module and management module.
The present invention is realized in warning function:First by the information data collected by distinctive free algorithm, Redefine hacker attacks behavior and the operation of rogue program is intended to, backtracking is perceived by free target, more directly finds net Security risk present in network and hacker's behavior, hacker attacks monitoring is contained comprehensively, network is anti-to divulge a secret, unknown behavior attack etc. Various hacker's behaviors;Where accurately can finding problem in nearly thousand kinds of public and private agreement, and send early warning;
Secondly, interface display unit can intuitively show interface, allow enterprise security situation to have a panoramic view, either converge Report, still receives visit, is all the optimal embodiment mode of enterprise image.
Finally, the network security situation awareness early warning system of the invention based on big data can be applied to government organs, Energy industry, transportation industry, industrial trade, education sector, financial industry, medical industry, information industry, real estate, water conservancy Industry etc., it ensure that the privacy and safety of all trades and professions.
Present invention also offers a kind of network security situation awareness method for early warning based on big data, including following step in addition Suddenly:
Step 1, collect data message, including viral wooden horse information, accidental destruction information, malice violation information, invasion row For information and abnormal access information, information is mainly derived from the typing and internet using the relevant enterprise unit of the system The relevant information of real-time release;
Step 2, using the data message collected in free Algorithm Analysis processing step 1, this algorithm redefine hacker and enter Invade behavior and the operation of rogue program is intended to, backtracking is perceived by free target, more directly finds safety present in network Risk and hacker's behavior, where can accurately finding problem in nearly thousand kinds of public and private agreement;
Data message after being analyzed and processed in step 3, statistics screening step 2, generation warning information, real-time attack letter The information such as breath and many condition ranking information.
It is step 4, the various information generated in step 3 are displayed on the terminals.
Finally it should be noted that:Obviously, above-described embodiment is only intended to clearly illustrate the application example, and simultaneously The non-restriction to embodiment.For those of ordinary skill in the field, can also do on the basis of the above description Go out other various forms of changes or variation.There is no necessity and possibility to exhaust all the enbodiments.And thus drawn Among the obvious changes or variations that Shen goes out is still in the protection domain of the application type.

Claims (6)

1. a kind of network security situation awareness early warning system based on big data, it is characterised in that including data collection module, divide Processing unit, service functional unit and interface display unit are analysed,
The data collection module includes data collection engine, and the data collection engine is used for the information for being passed to mirror image network interface Data are exhaustively collected storage;
The analysis and processing unit includes protocol analysis engine, free perception engine, attack analysis engine and data convert engine, The protocol analysis engine, free engine, attack analysis engine and the data convert engine of perceiving are used for the Data Collection list The information that member is collected is analyzed;
The business function processing unit is used for the information combination after analysis and processing unit is handled, system administration and realizes alarm Function;
The data visualization that the interface display unit is used to provide business function processing unit is shown, is Subscriber Management System Operation entry is provided.
A kind of 2. network security situation awareness early warning system based on big data according to claim 1, it is characterised in that The information data that the data collection engine is collected includes viral wooden horse information, accidental destruction information, malice violation information, invasion Behavioural information and abnormal access information.
A kind of 3. network security situation awareness early warning system based on big data according to claim 1, it is characterised in that The service functional unit includes screening query function module, statistical function module, protocol data restoring function module, data lattice Formula conversion functional module, real-time many condition combination ranking function module, system journal functional module, alarm function module and system Management module.
A kind of 4. network security situation awareness early warning system based on big data according to claim 1, it is characterised in that The interface display unit includes real time comprehensive monitoring modular, whole network data display module, chart dynamic statistics module, many condition Inquiry and screening module, agreement and time statistical module, multi-protocols restoring data display module, real-time critical attacks behavior mould Block, system journal module and management module.
5. a kind of network security situation awareness method for early warning based on big data, it is characterised in that comprise the following steps:
Step 1, collect data message;
Step 2, using the data message collected in free Algorithm Analysis processing step 1;
Step 3, statistics screening step 2 in analyze and process after data message, generation warning information, real-time attack information and Many condition ranking information.
It is step 4, the various information generated in step 3 are displayed on the terminals.
A kind of 6. network security situation awareness method for early warning based on big data according to claim 5, it is characterised in that The data message collected in the step 1 includes viral wooden horse information, accidental destruction information, malice violation information, intrusion behavior Information and abnormal access information.
CN201710694114.4A 2017-08-15 2017-08-15 A kind of network security situation awareness early warning system and method based on big data Pending CN107483438A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710694114.4A CN107483438A (en) 2017-08-15 2017-08-15 A kind of network security situation awareness early warning system and method based on big data

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710694114.4A CN107483438A (en) 2017-08-15 2017-08-15 A kind of network security situation awareness early warning system and method based on big data

Publications (1)

Publication Number Publication Date
CN107483438A true CN107483438A (en) 2017-12-15

Family

ID=60600409

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710694114.4A Pending CN107483438A (en) 2017-08-15 2017-08-15 A kind of network security situation awareness early warning system and method based on big data

Country Status (1)

Country Link
CN (1) CN107483438A (en)

Cited By (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108200045A (en) * 2017-12-28 2018-06-22 山东渔翁信息技术股份有限公司 Security Situation Awareness Systems and method
CN108512896A (en) * 2018-02-06 2018-09-07 北京东方棱镜科技有限公司 Mobile Internet security postures cognition technology based on big data and device
CN108810014A (en) * 2018-06-29 2018-11-13 北京奇虎科技有限公司 Attack alarm method and device
CN108833397A (en) * 2018-06-08 2018-11-16 武汉思普崚技术有限公司 A kind of big data safety analysis plateform system based on network security
CN109286629A (en) * 2018-10-12 2019-01-29 四川长虹电器股份有限公司 A kind of data visualization situation early warning system based on the attack of WEB website
CN109327433A (en) * 2018-09-03 2019-02-12 北京智游网安科技有限公司 Threat cognitive method and system based on Run-time scenario analysis
CN109492994A (en) * 2018-10-29 2019-03-19 成都思维世纪科技有限责任公司 A kind of three-dimensional all-position safety management platform based on big data
CN109714323A (en) * 2018-12-17 2019-05-03 清创网御(合肥)科技有限公司 A kind of the whole network dangerous criminal platform and its working method
CN111131338A (en) * 2020-04-01 2020-05-08 深圳市云盾科技有限公司 Method and system for detecting safety of Internet of things at perception situation and storage medium
CN111832027A (en) * 2020-06-29 2020-10-27 郑州云智信安安全技术有限公司 Network intrusion safety early warning system based on cloud computing
CN112187823A (en) * 2020-10-13 2021-01-05 绍兴文理学院 Internet of things availability evaluation method for malicious program diffusion under fog computing architecture

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104270372A (en) * 2014-10-11 2015-01-07 国家电网公司 Parameter self-adaption network security posture quantitative evaluation method
CN104753946A (en) * 2015-04-01 2015-07-01 浪潮电子信息产业股份有限公司 Security analysis framework based on network traffic meta data
CN105553957A (en) * 2015-12-09 2016-05-04 国家电网公司 Network safety situation awareness early-warning method and system based big data
US20170163668A1 (en) * 2012-03-22 2017-06-08 Los Alamos National Security, Llc Path scanning for the detection of anomalous subgraphs and use of dns requests and host agents for anomaly/change detection and network situational awareness
WO2017105340A1 (en) * 2015-12-14 2017-06-22 Certis Cisco Security Pte Ltd System and method for 3d abstract object modelling of high entropic information security threats

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20170163668A1 (en) * 2012-03-22 2017-06-08 Los Alamos National Security, Llc Path scanning for the detection of anomalous subgraphs and use of dns requests and host agents for anomaly/change detection and network situational awareness
CN104270372A (en) * 2014-10-11 2015-01-07 国家电网公司 Parameter self-adaption network security posture quantitative evaluation method
CN104753946A (en) * 2015-04-01 2015-07-01 浪潮电子信息产业股份有限公司 Security analysis framework based on network traffic meta data
CN105553957A (en) * 2015-12-09 2016-05-04 国家电网公司 Network safety situation awareness early-warning method and system based big data
WO2017105340A1 (en) * 2015-12-14 2017-06-22 Certis Cisco Security Pte Ltd System and method for 3d abstract object modelling of high entropic information security threats

Cited By (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108200045A (en) * 2017-12-28 2018-06-22 山东渔翁信息技术股份有限公司 Security Situation Awareness Systems and method
CN108512896A (en) * 2018-02-06 2018-09-07 北京东方棱镜科技有限公司 Mobile Internet security postures cognition technology based on big data and device
CN108833397A (en) * 2018-06-08 2018-11-16 武汉思普崚技术有限公司 A kind of big data safety analysis plateform system based on network security
CN108810014B (en) * 2018-06-29 2021-06-04 北京奇虎科技有限公司 Attack event warning method and device
CN108810014A (en) * 2018-06-29 2018-11-13 北京奇虎科技有限公司 Attack alarm method and device
CN109327433A (en) * 2018-09-03 2019-02-12 北京智游网安科技有限公司 Threat cognitive method and system based on Run-time scenario analysis
CN109327433B (en) * 2018-09-03 2022-05-17 北京智游网安科技有限公司 Threat perception method and system based on operation scene analysis
CN109286629A (en) * 2018-10-12 2019-01-29 四川长虹电器股份有限公司 A kind of data visualization situation early warning system based on the attack of WEB website
CN109492994A (en) * 2018-10-29 2019-03-19 成都思维世纪科技有限责任公司 A kind of three-dimensional all-position safety management platform based on big data
CN109714323B (en) * 2018-12-17 2021-02-02 清创网御(合肥)科技有限公司 Whole-network danger sensing platform and working method thereof
CN109714323A (en) * 2018-12-17 2019-05-03 清创网御(合肥)科技有限公司 A kind of the whole network dangerous criminal platform and its working method
CN111131338A (en) * 2020-04-01 2020-05-08 深圳市云盾科技有限公司 Method and system for detecting safety of Internet of things at perception situation and storage medium
CN111832027A (en) * 2020-06-29 2020-10-27 郑州云智信安安全技术有限公司 Network intrusion safety early warning system based on cloud computing
CN112187823A (en) * 2020-10-13 2021-01-05 绍兴文理学院 Internet of things availability evaluation method for malicious program diffusion under fog computing architecture

Similar Documents

Publication Publication Date Title
CN107483438A (en) A kind of network security situation awareness early warning system and method based on big data
CN104509034B (en) Pattern merges to identify malicious act
US9386036B2 (en) Method for detecting and preventing a DDoS attack using cloud computing, and server
CN111800395A (en) Threat information defense method and system
CN107046543A (en) A kind of threat intelligence analysis system traced to the source towards attack
CN106209826A (en) A kind of safety case investigation method of Network Security Device monitoring
CN112039862B (en) Multi-dimensional stereo network-oriented security event early warning method
CN108270716A (en) A kind of audit of information security method based on cloud computing
US9961047B2 (en) Network security management
CN116614277A (en) Network security supervision system and method based on machine learning and abnormal behavior analysis
CN115021997B (en) Network intrusion detection system based on machine learning
CN114143064A (en) Multi-source network security alarm event tracing and automatic processing method and device
KR100846835B1 (en) Method and apparatus for Security Event Correlation Analysis based on Context Language
CN115941317A (en) Network security comprehensive analysis and situation awareness platform
CN117375985A (en) Method and device for determining security risk index, storage medium and electronic device
CN112596984A (en) Data security situation sensing system under weak isolation environment of service
CN114238279A (en) Database security protection method, device, system, storage medium and electronic equipment
Azmi Bin Mustafa Sulaiman et al. SIEM Network Behaviour Monitoring Framework using Deep Learning Approach for Campus Network Infrastructure
CN111726355A (en) Network security situation perception system based on big data
Xu et al. Method of cumulative anomaly identification for security database based on discrete markov chain
Du et al. A Method of Network Behavior Recognition and Attack Scenario Reconstruction for Attack Kill Chain
Li et al. Overview of intrusion detection systems
Li et al. Implementation of the distributed hierarchical security operation center using mobile agent group
Wang et al. Structure and key technologies of nuclear power plant network security situational awareness platform
Arora et al. Home Network Security Incorporating Machine Learning Algorithms In Internet Of Medical Things

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
CB02 Change of applicant information
CB02 Change of applicant information

Address after: 255000 Zibo hi tech Zone, Shandong hi tech Pioneer Park D seat 1205, 1206, 1207, 1208, 1209, 1210

Applicant after: Warner Network Technology Co., Ltd

Address before: 255000 Zibo hi tech Zone, Shandong hi tech Pioneer Park D seat 1205, 1206, 1207, 1208, 1209, 1210

Applicant before: SHANDONG HUANUO NETWORK TECHNOLOGY Co.,Ltd.

RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20171215