CN100531073C - 一种基于状态检测的协议异常检测方法及系统 - Google Patents
一种基于状态检测的协议异常检测方法及系统 Download PDFInfo
- Publication number
- CN100531073C CN100531073C CNB2007101207220A CN200710120722A CN100531073C CN 100531073 C CN100531073 C CN 100531073C CN B2007101207220 A CNB2007101207220 A CN B2007101207220A CN 200710120722 A CN200710120722 A CN 200710120722A CN 100531073 C CN100531073 C CN 100531073C
- Authority
- CN
- China
- Prior art keywords
- protocol
- state
- agreement
- normal
- model
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Abstract
Description
Claims (3)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CNB2007101207220A CN100531073C (zh) | 2007-08-24 | 2007-08-24 | 一种基于状态检测的协议异常检测方法及系统 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CNB2007101207220A CN100531073C (zh) | 2007-08-24 | 2007-08-24 | 一种基于状态检测的协议异常检测方法及系统 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN101119241A CN101119241A (zh) | 2008-02-06 |
CN100531073C true CN100531073C (zh) | 2009-08-19 |
Family
ID=39055193
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CNB2007101207220A Expired - Fee Related CN100531073C (zh) | 2007-08-24 | 2007-08-24 | 一种基于状态检测的协议异常检测方法及系统 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN100531073C (zh) |
Families Citing this family (19)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101964922B (zh) * | 2009-07-23 | 2015-05-06 | 中兴通讯股份有限公司 | 异常情况捕捉方法及装置 |
CN101673200B (zh) * | 2009-10-15 | 2015-10-21 | 中兴通讯股份有限公司 | 用户输入模型的检测方法及装置 |
NL2007180C2 (en) | 2011-07-26 | 2013-01-29 | Security Matters B V | Method and system for classifying a protocol message in a data communication network. |
CN103516703A (zh) * | 2012-06-29 | 2014-01-15 | 西门子公司 | 一种数据报文检测方法和设备 |
CN103116168B (zh) * | 2013-02-01 | 2015-02-04 | 珠海德百祺科技有限公司 | 一种导航定位装置的异常检测及处理方法和装置 |
CN103269290B (zh) * | 2013-04-18 | 2016-04-13 | 中国移动通信集团陕西有限公司 | 基于案例库智能分析网络异常的方法和装置 |
CN104363131B (zh) * | 2014-10-14 | 2017-11-21 | 国家电网公司 | 基于有限状态机动态可扩展的电力通信协议异常检测方法 |
CN104601230A (zh) * | 2015-01-09 | 2015-05-06 | 北京奥普维尔科技有限公司 | 一种无线测试仪表、及其测试方法 |
CN104601231B (zh) * | 2015-01-09 | 2018-06-08 | 北京奥普维尔科技有限公司 | 一种测试仪表、系统及方法 |
CN104618180A (zh) * | 2015-01-09 | 2015-05-13 | 北京奥普维尔科技有限公司 | 一种测试仪表及测试方法 |
CN104883281B (zh) * | 2015-05-27 | 2019-03-08 | 北京北信源软件股份有限公司 | 一种网络边界检测方法 |
CN105049227B (zh) * | 2015-06-12 | 2018-03-30 | 杭州德澜科技有限公司 | 一种Wifi非联网控制及设置的方法 |
CN105897879B (zh) * | 2016-04-01 | 2019-03-01 | 锐捷网络股份有限公司 | 一种迁移自动配置服务器acs的方法、设备及客户端 |
CN106254316B (zh) * | 2016-07-20 | 2019-07-05 | 北京工业大学 | 一种基于数据依赖的工控行为异常检测系统 |
CN108718296A (zh) * | 2018-04-27 | 2018-10-30 | 广州西麦科技股份有限公司 | 基于sdn网络的网络管控方法、装置与计算机可读存储介质 |
CN111163043B (zh) * | 2018-11-08 | 2023-03-21 | 全球能源互联网研究院有限公司 | 一种源网荷系统实时交互协议深度解析方法和系统 |
US11843621B2 (en) * | 2019-03-08 | 2023-12-12 | Forescout Technologies, Inc. | Behavior based profiling |
CN112153030B (zh) * | 2020-09-15 | 2022-04-12 | 杭州弈鸽科技有限责任公司 | 一种基于形式化验证的物联网协议安全性自动分析方法与系统 |
CN114039783B (zh) * | 2021-11-10 | 2024-01-30 | 中国人民解放军战略支援部队信息工程大学 | 一种网络安全协议脆弱性分析方法 |
-
2007
- 2007-08-24 CN CNB2007101207220A patent/CN100531073C/zh not_active Expired - Fee Related
Non-Patent Citations (2)
Title |
---|
基于状态检测的TCP应用服务端安全测试. 金虎,李志蜀,杨秋辉,李奇.四川大学学报(工程科学版),第37卷第4期. 2005 |
基于状态检测的TCP应用服务端安全测试. 金虎,李志蜀,杨秋辉,李奇.四川大学学报(工程科学版),第37卷第4期. 2005 * |
Also Published As
Publication number | Publication date |
---|---|
CN101119241A (zh) | 2008-02-06 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN100531073C (zh) | 一种基于状态检测的协议异常检测方法及系统 | |
Tan et al. | A new framework for DDoS attack detection and defense in SDN environment | |
CN101399710B (zh) | 一种协议格式异常检测方法及系统 | |
Yazdinejadna et al. | A kangaroo-based intrusion detection system on software-defined networks | |
Caselli et al. | Sequence-aware intrusion detection in industrial control systems | |
EP3855692A1 (en) | Network security monitoring method, network security monitoring device, and system | |
CN101753377B (zh) | 一种p2p_botnet实时检测方法及系统 | |
CN107135093B (zh) | 一种基于有限自动机的物联网入侵检测方法及检测系统 | |
Lin et al. | Adapting bro into scada: building a specification-based intrusion detection system for the dnp3 protocol | |
CN101035111B (zh) | 一种智能协议解析方法及装置 | |
CN110224990A (zh) | 一种基于软件定义安全架构的入侵检测系统 | |
CN108683682A (zh) | 一种基于软件定义网络的DDoS攻击检测及防御方法和系统 | |
CN104580222A (zh) | 基于信息熵的DDoS攻击分布式检测与响应系统及方法 | |
Fiterău-Broştean et al. | Learning fragments of the TCP network protocol | |
CN108989136A (zh) | 业务端到端性能监控方法及装置 | |
CN111866030B (zh) | 一种拟态边缘网关的工业协议识别装置及方法 | |
CN111800419B (zh) | 一种SDN环境下DDoS攻击检测系统及方法 | |
Matoušek et al. | Efficient modelling of ICS communication for anomaly detection using probabilistic automata | |
CN201813382U (zh) | 一种用于运载火箭测试和发射控制的网络监测系统 | |
Lima et al. | BP-IDS: Using business process specification to leverage intrusion detection in critical infrastructures | |
Waagsnes et al. | Intrusion Detection System Test Framework for SCADA Systems. | |
Fenil et al. | Towards a secure software defined network with adaptive mitigation of dDoS attacks by machine learning approaches | |
KR20220029142A (ko) | Sdn 컨트롤러 서버 및 이의 sdn 기반 네트워크 트래픽 사용량 분석 방법 | |
CN116418567A (zh) | 一种网络协议安全性测试系统 | |
EP4046331B1 (en) | Endpoint network sensor and related cybersecurity infrastructure |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
ASS | Succession or assignment of patent right |
Owner name: BEIJING QIMINGXINCHEN INFORMATION SECURITY TECHNOL |
|
C41 | Transfer of patent application or patent right or utility model | ||
COR | Change of bibliographic data |
Free format text: CORRECT: ADDRESS; FROM: 100094 QIMINGXINGCHEN BUILDING, NO.21, ZHONGGUANCUN SOFTWARE PARK, NO.8, DONGBEIWANG WEST ROAD, HAIDIAN DISTRICT, BEIJING CITY TO: 100193 QIMINGXINGCHEN BUILDING, BUILDING 21, ZHONGGUANCUN SOFTWARE PARK, NO.8, DONGBEIWANG WEST ROAD, HAIDIAN DISTRICT, BEIJING CITY |
|
TR01 | Transfer of patent right |
Effective date of registration: 20100507 Address after: 100193 Beijing city Haidian District Dongbeiwang qimingxingchenmansionproject Building No. 21 West Road No. 8 Zhongguancun Software Park Co-patentee after: Beijing Venusense Information Security Technology Co., Ltd. Patentee after: Beijing Venus Information Technology Co., Ltd. Address before: 100094, Beijing Haidian District 8 West Road, Zhongguancun Software Park, 21, Venus building Patentee before: Beijing Venus Information Technology Co., Ltd. |
|
CF01 | Termination of patent right due to non-payment of annual fee | ||
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20090819 Termination date: 20160824 |