CN105488393B - 一种基于数据库蜜罐的攻击行为意图分类方法及系统 - Google Patents
一种基于数据库蜜罐的攻击行为意图分类方法及系统 Download PDFInfo
- Publication number
- CN105488393B CN105488393B CN201410824964.8A CN201410824964A CN105488393B CN 105488393 B CN105488393 B CN 105488393B CN 201410824964 A CN201410824964 A CN 201410824964A CN 105488393 B CN105488393 B CN 105488393B
- Authority
- CN
- China
- Prior art keywords
- behavior
- network intrusion
- attack
- intrusion behavior
- path
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 29
- 235000012907 honey Nutrition 0.000 title claims abstract description 23
- 230000009545 invasion Effects 0.000 claims description 17
- 238000001514 detection method Methods 0.000 claims description 10
- 230000035515 penetration Effects 0.000 claims description 8
- 230000003466 anti-cipated effect Effects 0.000 claims 1
- 238000009434 installation Methods 0.000 description 3
- 230000009471 action Effects 0.000 description 2
- 238000012550 audit Methods 0.000 description 1
- 230000008901 benefit Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 235000009508 confectionery Nutrition 0.000 description 1
- 238000012790 confirmation Methods 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 235000013399 edible fruits Nutrition 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 230000000750 progressive effect Effects 0.000 description 1
- 230000004044 response Effects 0.000 description 1
Landscapes
- Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
- Computer And Data Communications (AREA)
Abstract
Description
Claims (6)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410824964.8A CN105488393B (zh) | 2014-12-27 | 2014-12-27 | 一种基于数据库蜜罐的攻击行为意图分类方法及系统 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410824964.8A CN105488393B (zh) | 2014-12-27 | 2014-12-27 | 一种基于数据库蜜罐的攻击行为意图分类方法及系统 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN105488393A CN105488393A (zh) | 2016-04-13 |
CN105488393B true CN105488393B (zh) | 2018-07-03 |
Family
ID=55675367
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201410824964.8A Active CN105488393B (zh) | 2014-12-27 | 2014-12-27 | 一种基于数据库蜜罐的攻击行为意图分类方法及系统 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN105488393B (zh) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN112131249A (zh) * | 2020-09-28 | 2020-12-25 | 绿盟科技集团股份有限公司 | 一种攻击意图识别方法及装置 |
Families Citing this family (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107341396B (zh) * | 2016-05-03 | 2020-08-04 | 阿里巴巴集团控股有限公司 | 入侵检测方法、装置及服务器 |
CN108234400B (zh) * | 2016-12-15 | 2021-01-22 | 北京金山云网络技术有限公司 | 一种攻击行为确定方法、装置及态势感知系统 |
CN107835201A (zh) * | 2017-12-14 | 2018-03-23 | 华中师范大学 | 网络攻击检测方法及装置 |
CN107872467A (zh) * | 2017-12-26 | 2018-04-03 | 中国联合网络通信集团有限公司 | 基于Serverless架构的蜜罐主动防御方法和蜜罐主动防御系统 |
CN109302403B (zh) * | 2018-10-26 | 2021-03-23 | 锦图计算技术(深圳)有限公司 | 网络入侵检测方法、系统、设备及计算机可读存储介质 |
CN111447168B (zh) * | 2019-01-16 | 2022-05-24 | 河南信安通信技术股份有限公司 | 一种多维的网络安全预测方法 |
CN111478912A (zh) * | 2020-04-10 | 2020-07-31 | 厦门慢雾科技有限公司 | 一种区块链入侵检测系统及方法 |
CN115065528A (zh) * | 2022-06-14 | 2022-09-16 | 上海磐御网络科技有限公司 | 一种基于ftp服务的攻击反制系统及方法 |
Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1460932A (zh) * | 2003-06-18 | 2003-12-10 | 北京首信股份有限公司 | 一种基于相关特征聚类的层次入侵检测系统 |
CN1801030A (zh) * | 2004-12-31 | 2006-07-12 | 福建东方微点信息安全有限责任公司 | 一种区分有害程序行为的方法 |
CN101087196A (zh) * | 2006-12-27 | 2007-12-12 | 北京大学 | 多层次蜜网数据传输方法及系统 |
CN101242278A (zh) * | 2008-02-18 | 2008-08-13 | 华中科技大学 | 网络多步攻击意图在线识别方法 |
CN101582817A (zh) * | 2009-06-29 | 2009-11-18 | 华中科技大学 | 网络交互行为模式提取及相似性分析方法 |
CN102882884A (zh) * | 2012-10-13 | 2013-01-16 | 山东电力集团公司电力科学研究院 | 信息化生产环境下基于蜜网的风险预警系统及方法 |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101075917B (zh) * | 2007-07-16 | 2010-08-25 | 华为技术有限公司 | 一种预测网络攻击行为的方法及装置 |
-
2014
- 2014-12-27 CN CN201410824964.8A patent/CN105488393B/zh active Active
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1460932A (zh) * | 2003-06-18 | 2003-12-10 | 北京首信股份有限公司 | 一种基于相关特征聚类的层次入侵检测系统 |
CN1801030A (zh) * | 2004-12-31 | 2006-07-12 | 福建东方微点信息安全有限责任公司 | 一种区分有害程序行为的方法 |
CN101087196A (zh) * | 2006-12-27 | 2007-12-12 | 北京大学 | 多层次蜜网数据传输方法及系统 |
CN101242278A (zh) * | 2008-02-18 | 2008-08-13 | 华中科技大学 | 网络多步攻击意图在线识别方法 |
CN101582817A (zh) * | 2009-06-29 | 2009-11-18 | 华中科技大学 | 网络交互行为模式提取及相似性分析方法 |
CN102882884A (zh) * | 2012-10-13 | 2013-01-16 | 山东电力集团公司电力科学研究院 | 信息化生产环境下基于蜜网的风险预警系统及方法 |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN112131249A (zh) * | 2020-09-28 | 2020-12-25 | 绿盟科技集团股份有限公司 | 一种攻击意图识别方法及装置 |
Also Published As
Publication number | Publication date |
---|---|
CN105488393A (zh) | 2016-04-13 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN105488393B (zh) | 一种基于数据库蜜罐的攻击行为意图分类方法及系统 | |
US11316891B2 (en) | Automated real-time multi-dimensional cybersecurity threat modeling | |
US10574685B2 (en) | Synthetic cyber-risk model for vulnerability determination | |
US11277432B2 (en) | Generating attack graphs in agile security platforms | |
CN109525558B (zh) | 数据泄露检测方法、系统、装置及存储介质 | |
US11153331B2 (en) | Detection of an ongoing data breach based on relationships among multiple network elements | |
JP2020022208A (ja) | 通信ネットワークに接続された作業環境への攻撃を検出する方法 | |
CN111200575B (zh) | 一种基于机器学习的信息系统恶意行为的识别方法 | |
US20140195793A1 (en) | Remotely Establishing Device Platform Integrity | |
US11641365B2 (en) | Hybrid intrusion detection model for cyberattacks in avionics internet gateways using edge analytics | |
CN109155774A (zh) | 用于检测安全威胁的系统和方法 | |
US10462170B1 (en) | Systems and methods for log and snort synchronized threat detection | |
US11777961B2 (en) | Asset remediation trend map generation and utilization for threat mitigation | |
US20190394220A1 (en) | Automatic characterization of malicious data flows | |
Pirozmand et al. | Intrusion detection into cloud-fog-based iot networks using game theory | |
Thakral et al. | Cybersecurity and ethics for IoT system: a massive analysis | |
Islam | Application of artificial intelligence and machine learning in security operations center | |
Forfot et al. | Digital Forensic Readiness in IoT-a risk assessment model | |
Kagita | Security and privacy issues for business intelligence in IoT | |
Byrd | Cybersecurity merely an afterthought in sports venue network infrastructures | |
Bhardwaj | Cybersecurity Incident Response Against Advanced Persistent Threats (APTs) | |
Wibowo et al. | Investigation of Fake Insider Threats on Private Cloud Computing Services | |
US11611585B2 (en) | Detection of privilege escalation attempts within a computer network | |
EP3806518A1 (en) | Hybrid intrusion detection model for cyber-attacks in avionics internet gateways using edge analytics | |
Ramos et al. | A Machine Learning Based Approach to Detect Stealthy Cobalt Strike C &C Activities from Encrypted Network Traffic |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
CP03 | Change of name, title or address |
Address after: 150010 Heilongjiang science and technology innovation city, Harbin new and high tech Industrial Development Zone, No. 7 building, innovation and entrepreneurship Plaza, 838 Patentee after: Harbin antiy Technology Group Limited by Share Ltd Address before: 150090 room 506, Hongqi Street, Nangang District, Harbin Development Zone, Heilongjiang, China, 162 Patentee before: Harbin Antiy Technology Co., Ltd. |
|
CP03 | Change of name, title or address | ||
PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: Database honey pot based attack behavior intention classification method and system Effective date of registration: 20190718 Granted publication date: 20180703 Pledgee: Bank of Longjiang, Limited by Share Ltd, Harbin Limin branch Pledgor: Harbin antiy Technology Group Limited by Share Ltd Registration number: 2019230000007 |
|
PE01 | Entry into force of the registration of the contract for pledge of patent right | ||
CP01 | Change in the name or title of a patent holder |
Address after: 150010 Heilongjiang science and technology innovation city, Harbin new and high tech Industrial Development Zone, No. 7 building, innovation and entrepreneurship Plaza, 838 Patentee after: Antan Technology Group Co.,Ltd. Address before: 150010 Heilongjiang science and technology innovation city, Harbin new and high tech Industrial Development Zone, No. 7 building, innovation and entrepreneurship Plaza, 838 Patentee before: Harbin Antian Science and Technology Group Co.,Ltd. |
|
CP01 | Change in the name or title of a patent holder | ||
CP01 | Change in the name or title of a patent holder |
Address after: 150010 Heilongjiang science and technology innovation city, Harbin new and high tech Industrial Development Zone, No. 7 building, innovation and entrepreneurship Plaza, 838 Patentee after: Antan Technology Group Co.,Ltd. Address before: 150010 Heilongjiang science and technology innovation city, Harbin new and high tech Industrial Development Zone, No. 7 building, innovation and entrepreneurship Plaza, 838 Patentee before: Harbin Antian Science and Technology Group Co.,Ltd. |
|
CP01 | Change in the name or title of a patent holder | ||
PC01 | Cancellation of the registration of the contract for pledge of patent right |
Date of cancellation: 20211119 Granted publication date: 20180703 Pledgee: Bank of Longjiang Limited by Share Ltd. Harbin Limin branch Pledgor: Harbin Antian Science and Technology Group Co.,Ltd. Registration number: 2019230000007 |
|
PC01 | Cancellation of the registration of the contract for pledge of patent right |