CN107067157A - Business risk appraisal procedure, device and air control system - Google Patents
Business risk appraisal procedure, device and air control system Download PDFInfo
- Publication number
- CN107067157A CN107067157A CN201710117674.3A CN201710117674A CN107067157A CN 107067157 A CN107067157 A CN 107067157A CN 201710117674 A CN201710117674 A CN 201710117674A CN 107067157 A CN107067157 A CN 107067157A
- Authority
- CN
- China
- Prior art keywords
- risk
- rule
- regular
- business datum
- score value
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q10/00—Administration; Management
- G06Q10/06—Resources, workflows, human or project management; Enterprise or organisation planning; Enterprise or organisation modelling
- G06Q10/063—Operations research, analysis or management
- G06Q10/0635—Risk analysis of enterprise or organisation activities
Abstract
The invention provides a kind of business risk appraisal procedure, device and air control system, method therein includes:Business datum to be assessed is received, and according to preset risk rule engine, identifies the risk behavior regular collection of business datum matching;To many rules in the regular collection, according to the risk evaluation model pre-established, each regular corresponding risk score value is assessed;The corresponding risk score value of many rules is added up, and will it is cumulative after the risk total score threshold value of each risk class of the risk score value summation with pre-setting be compared, determine the risk class of business datum.The present invention can improve the generalization ability and treatment effeciency of risk system.
Description
Technical field
The present invention relates to Internet technical field, more particularly to a kind of business risk appraisal procedure, device and air control system
System.
Background technology
Air control system is service security risk control system, it is intended to ensure the operation of the normal safety of each business.Referring to figure
1, it is a kind of typical risk system configuration diagram.The course of work of air control system is:Operation system is by servicing access mould
Block transmits user access activity data to regulation engine, and regulation engine depends on secure data warehouse and model strategy,
Wherein, secure data warehouse refers to social worker storehouse (social engineering database), the i.e. information of malicious user, comprising cell-phone number, IP,
User name etc.;Model strategy mainly include rule and policy that data analyst made by methods such as data minings there is provided
Intercepted to regulation engine.It can be seen that, when the regulation engine of air control system receives the incoming access data of business, by using
Whether the rule of certain behavioral data matching at family is risky and intercepted.As long as rule match here refers to hit one
The rule of predefined, just stops the follow-up rule set of matching.
Existing air control system the rule that manually sets to carry out abnormal behaviour interception by way of " hit exit ", this
At least there are following two problems in the mode of kind.
(1) generalization ability is poor
The regular hold-up interception method of " hit is exited " is difficult to the Rule Information for making full use of abnormal behaviour to trigger other classifications,
So that the generalization ability (Generalization Ability, to the adaptability of fresh sample) of air control system is poor.For example, existing
There is mode to access behavior successively traversal rule set, as long as a hit wherein rule, that is, it is malice to think the access behavior
, and do not continue to match follow-up regular collection.Therefore, for a malicious access, unique rule of its hit can only be obtained
Then, but in fact, a malicious access can hit many rules simultaneously, thus cause to be difficult to combine many rules and carry out while sentencing
Disconnected situation.
(2) efficiency is low
Due to needing the artificial priority set per rule, take time and effort.Because the degree of risk between different rules
It is different, it is therefore desirable to which rule set is ranked up according to its degree of risk, it is desirable to which the larger rule of risk can be ordered in advance
In, but set the degree of risk of Different Rule to need artificial experience, when rule set is larger, the degree of risk per rule is set
It is complex.
The content of the invention
In order to improve the generalization ability and treatment effeciency of air control system, the embodiment of the present invention provides a kind of business risk and assessed
Method, device and air control system.
According to an aspect of the present invention there is provided a kind of business risk appraisal procedure, including:Receive business number to be assessed
According to, and according to preset risk rule engine, identify the risk behavior regular collection of business datum matching;To the rule set
Many rules in conjunction, according to the risk evaluation model pre-established, assess each regular corresponding risk score value;By many rules and regulations
Then corresponding risk score value is added up, and will it is cumulative after risk score value summation and each risk class pre-set wind
Dangerous total score threshold value is compared, and determines the risk class of business datum.
It is preferred that, in addition to:The risk evaluation model is set up, including:Obtain sample data;To the sample data of acquisition
It is trained, obtains each regular Model Weight;Each regular Model Weight is converted into by score value by Linear Mapping;Root
The risk of frequency is triggered according to described each regular sub-rule, the score value for each sub-rule that adds up successively obtains regular point
Value;And, the corresponding risk total score threshold value of the different risk class of setting.
It is preferred that, the sample data to acquisition carries out logistic regression training, obtains each regular Model Weight.
It is preferred that, it is described according to preset risk rule engine, the regular collection of business datum matching is identified, including:
The risk rule engine, based on the malicious user accounts information or operation behavior information in secure data warehouse, matches industry
Corresponding each risk behavior rule of data of being engaged in constitutes the regular collection.
It is preferred that, the business datum includes:Business datum, registering service data, authentication services data are registered, and/or,
The anti-brush business datum of activity;The risk behavior rule refers to what is generated based on malicious user accounts information or operation behavior information
Risk behavior rule.
According to an aspect of the present invention there is provided a kind of business risk apparatus for evaluating, including:Business data processing unit,
For receiving business datum to be assessed, and according to preset risk rule engine, identify the regular collection of business datum matching;
Risk score value assessment unit, for many rules in the regular collection, according to the risk evaluation model pre-established, commenting
Estimate each regular corresponding risk score value;Risk class determining unit, for the corresponding risk score value of many rules to be tired out
Plus, and will it is cumulative after the risk total score threshold value of each risk class of the risk score value summation with pre-setting be compared, really
Make the risk class of business datum.
It is preferred that, in addition to:Risk evaluation model sets up unit, for setting up the risk evaluation model;The risk
Assessment models set up unit specifically for obtaining sample data;Sample data to acquisition is trained, and obtains each rule
Model Weight;Each regular Model Weight is converted into by score value by Linear Mapping;According to described each regular sub-rule
The risk of frequency is triggered, the score value for each sub-rule that adds up successively obtains the regular score value;And, different risks etc. are set
The corresponding risk total score threshold value of level.
It is preferred that, the risk evaluation model sets up unit specifically for the sample data to acquisition carries out logistic
Regression training, obtains each regular Model Weight.
It is preferred that, the business data processing unit specifically for:Using the risk rule engine, based on secure data
Malicious user accounts information or operation behavior information in warehouse, match the regular structure of each corresponding risk behavior of business datum
Into the regular collection.
It is preferred that, the business datum includes:Business datum, registering service data, authentication services data are registered, and/or,
The anti-brush business datum of activity;The risk behavior rule refers to what is generated based on malicious user accounts information or operation behavior information
Risk behavior rule.
According to a further aspect of the invention there is provided a kind of air control system, including business processing device, service access dress
Put, risk rule engine, secure data warehouse, intercept process device, the system also include risk assessment device, wherein:Institute
Business processing device is stated, business datum is linked into risk rule engine by the service access model;The risk rule
Engine, malicious user accounts information or operation behavior information in secure data warehouse, matches business datum corresponding
Each risk behavior rule constitutes risk rule set;The risk assessment device, for a plurality of in the regular collection
Rule, according to the risk evaluation model pre-established, assesses each regular corresponding risk score value, and many rules are corresponding
Risk score value is added up, and will it is cumulative after risk score value summation and each risk class pre-set risk total score threshold
Value is compared, and determines the risk class of business datum;The intercept process device, for risk according to business datum etc.
Level, based on preset interception strategy, is intercepted to business datum.
It is preferred that, the risk assessment device is additionally operable to set up risk evaluation model, specifically, obtaining sample data;It is right
The sample data of acquisition is trained, and obtains each regular Model Weight;Each regular model is weighed by Linear Mapping
Score value is converted into again;The risk of frequency is triggered according to described each regular sub-rule, the score value for each sub-rule that adds up successively
Obtain the regular score value;And, the corresponding risk total score threshold value of the different risk class of setting.
It is preferred that, the business datum includes:Business datum, registering service data, authentication services data are registered, and/or,
The anti-brush business datum of activity;The risk behavior rule refers to what is generated based on malicious user accounts information or operation behavior information
Risk behavior rule.
It can be seen that, in the business risk control method that the present invention is provided, no longer only rely upon the wall scroll that abnormal behaviour is triggered
Rule, but the strictly all rules triggered by the abnormal behaviour, in the way of the regular score value of various dimensions is cumulative carrying out risk sentences
It is disconnected;Moreover, without manually setting the priority per rule, but by training the data of existing air control system to obtain model,
Then according to the risk class of sub-rule, transformation model weight is regular score value in the form of weight is cumulative, and then reaches automatic
Regular score value is set then to export the purpose of risk class.The regular air control mode of wall scroll is only relied on relative to prior art, this
Invention improves the generalization ability of air control system, first for mode of the prior art by artificial setting rule prioritization, this hair
It is bright to improve treatment effeciency.
Brief description of the drawings
Fig. 1 is a kind of air control system structure diagram provided in an embodiment of the present invention
Fig. 2 is a kind of business risk appraisal procedure flow chart provided in an embodiment of the present invention;
Fig. 3 is a kind of business risk appraisal procedure example principles schematic diagram provided in an embodiment of the present invention;
Fig. 4 is a kind of business risk apparatus for evaluating structural representation provided in an embodiment of the present invention;
Fig. 5 is a kind of air control system structure diagram provided in an embodiment of the present invention.
Embodiment
In order to facilitate the understanding of the purposes, features and advantages of the present invention, it is below in conjunction with the accompanying drawings and specific real
Applying mode, the present invention is further detailed explanation.
The strictly all rules information that the embodiment of the present invention is difficult to make full use of triggering for existing air control system, and manually set
Put rule prioritization to take time and effort, propose a kind of business risk appraisal procedure added up based on weight.For example, this method is led to first
The data that the existing air control system of logistic regression Algorithm for Training is obtained are crossed, Model Weight are obtained, then according to every sub-rule
Risk class, Model Weight is converted into sub-rule score value in the form of weight is cumulative, i.e., by the regular low fraction of same type
Value is added to high-grade, to ensure that the high-grade score value of same type rule is more than inferior grade, and then reaches and automatic sets rule point
The purpose of value.
It is a kind of business risk appraisal procedure flow chart provided in an embodiment of the present invention referring to Fig. 2, this method includes:
S201:Business datum to be assessed is received, and according to preset risk rule engine, identifies business datum matching
Risk behavior regular collection.
Wherein, business datum includes but is not limited to registration business datum, registering service data, authentication services data, and/
Or, movable anti-brush business datum, etc..
Being introduced as before, risk rule engine is generally comprised in risk system, in this step, it is possible to use risk rule is drawn
Hold up, based on the malicious user information in secure data warehouse, match corresponding each risk behavior rule of business datum and constitute
Regular collection.Wherein, account information includes but is not limited to cell-phone number, IP, user name;Operation behavior information includes but is not limited to frequency
It is numerous to log in ,/access, bad password is repeatedly logged in/and access, etc. for example, being frequently logged on using same IP address.
It can be seen that, risk behavior rule refers to the risk behavior based on malicious user accounts information or the generation of operation behavior information
Rule, for example, risk behavior rule includes but is not limited to:Malicious user login/access, same address are frequently logged on/is accessed, mistake
Password is frequently logged on/accessed, etc. by mistake.
S202:To many rules in regular collection, according to the risk evaluation model pre-established, each rule is assessed right
The risk score value answered.
It is preferred that, the above method also includes:The step of setting up the risk evaluation model.Specifically, setting up the risk
The process of assessment models includes:Obtain sample data;Sample data to acquisition is trained, and obtains each regular model power
Weight;Each regular Model Weight is converted into by score value by Linear Mapping;Frequency is triggered according to each sub-rule of a rule
The risk of rate, the score value for each sub-rule that adds up successively obtains the regular score value;And, set different risk class corresponding
Risk total score threshold value.
It is preferred that, sample data is trained using logistic regression algorithm.Logistic regression essence is a kind of
Sorting algorithm, has used a sigmod function, and the linear weighted function result of feature is mapped between 0 to 1, and this just can be with
Regard that data sample point belongs to the probability of a certain class as.If result is closer to 0 or 1, illustrate that the confidence level of classification results is got over
It is high.
S203:The corresponding risk score value of many rules is added up, and will it is cumulative after risk score value summation with advance
The risk total score threshold value of each risk class set is compared, and determines the risk class of business datum.
In order to understand that conveniently, a simple case of such scheme is:First, business datum to be assessed matches 3 rules and regulations
Then:Rule1, rule2, rule3 (S201), then, per the corresponding risk score value of rule be respectively score1, score2,
Score3 (S202), finally, the corresponding risk score value of this three rule is added and obtains sum_score (sum_score=
Score1+score2+score3), then by sum_score it is compared with risk class total score threshold value set in advance
(S203), for example, it is assumed that there is tri- risk class of levle1, level2, level3, and these three risk class are corresponded to respectively
Different risk total score threshold values (generally, risk class is higher, and total score threshold value is higher), by sum_score and each etc.
The total score threshold value of level compares, and determines which grade is business datum belong to.
The embodiment of the present invention is illustrated with a concrete instance below.
The business such as registration, login, authentication, the anti-brush of activity that the example can apply in video website, for example, log in industry
Business, malicious user may use the username and password leaked on internet, carry out violence login, then can be according to the malice
The IP of user, User_agent, device_id, visitation frequency, trial user name password number, determine that it is triggered all
Regular collection, then by the method for the embodiment of the present invention, determines the risk class that malicious user is accessed, to be intercepted.
It is a kind of business risk appraisal procedure example principles schematic diagram provided in an embodiment of the present invention referring to Fig. 3.
First, the modules being related to Fig. 3 make following introduce.
Labeled data collection:The sample data provided using existing air control system, sample data is mainly each business
Strictly all rules set that user behavior data, existing air control system are hit to its user behavior and whether risky mark,
For example:For User logs in data, if hit IP high frequencies are accessed and IP code errors rate is higher than the regular collection of threshold value, mark
For " risky ";
Regression training module:It is mainly used in training existing air control system labeled data collection, is having for obtaining each rule
Model Weight under risk label and devoid of risk label, for example:" IP high frequency access rules, risky, weight 2.112345 ",
It represents that weight of the rule under risky label is larger, illustrates that this regular risk class is higher;
Model Weight converts value module:Because Model Weight is all decimal, such as 0.01234, it is unfavorable for artificial judgement,
Therefore, score value is switched to by Linear Mapping, for example, switchs to 0 to 100 point;
Same type rule weight accumulator module:Because in existing air control system, certain rule because the frequency of its triggering not
Together, different risk class may be corresponded to, such as IP access rules, according to the size of its frequency, may correspond to high-risk grade
And low risk level, and this is considered as two sub-rules of same type in existing air control system:IP high frequencies access rule and IP
Low frequency access rule;Therefore, in order to ensure that same type sub-rule becomes big according to its numerical intervals and risk class becomes big, therefore enter
Row score value weight adds up, the regular score value of the cumulative IP low frequencies of the regular score value of such as IP intermediate frequencies, the cumulative IP intermediate frequencies of IP high frequent rules score value
Regular score value;
Air control grading module:Certain user behavior data provided according to business datum to be assessed, identifies that it is triggered
Strictly all rules, and add up these regular score values, then compare total score and the threshold value being previously set, to export risk etc.
Level.
Below, the specific steps to the example make following illustrate.
S1:It is risky and devoid of risk using existing air control system marks data set D, while marking every with dualistic manner
The sub-rule of data-triggered;
S2:D is trained with L2 regularizations using logistic regression algorithm, y in Model Weight β, following formula is obtained and represents
Whether risky, x represents the rule of triggering;
S3:β is mapped as by every sub-rule score value s by Linear Mapping, while being repaiied according to the default level of every rule
The relatively low weight of positive weights;
S=A β
S4:By same type rule inferior grade score value be added to successively it is high-grade, with ensure same type rule it is high-grade
Score value is more than inferior grade, and such as same type rule has Three Estate 1,2,3, then its fraction is as follows:
s1=A β1
s2=s1+Aβ2
s3=s2+Aβ3
S5:The ratio of different brackets data is set according to priori, the boundary value S of different brackets total score is obtained;
S=s1x1+s2x2+...+snxn
S6:For the data of abnormal behaviour, adding up, it triggers regular score value, to determine risk class.
It can be seen that, in the business risk control method provided in an embodiment of the present invention added up based on weight, no longer only rely upon
The wall scroll rule that abnormal behaviour is triggered, but the strictly all rules triggered by the abnormal behaviour, with the regular score value of various dimensions
Cumulative mode carries out risk judgment;Moreover, without manually setting every priority for not having rule, but by training existing wind
The data of control system obtain model, then according to the risk class of sub-rule, using weight it is cumulative in the form of transformation model weight as
Regular score value, and then reach the automatic purpose for setting regular score value then to export risk class.Only relied on relative to prior art
The air control mode of wall scroll rule, the present invention improves the generalization ability of air control system, first for prior art by artificial setting
The mode of rule prioritization, the present invention improves treatment effeciency.
It should be noted that for embodiment of the method, in order to be briefly described, therefore it to be all expressed as to a series of action group
Close, but those skilled in the art should know, the embodiment of the present invention is not limited by described sequence of movement, because according to
According to the embodiment of the present invention, some steps can be carried out sequentially or simultaneously using other.Secondly, those skilled in the art also should
Know, embodiment described in this description belongs to preferred embodiment, the involved action not necessarily present invention is implemented
Necessary to example.
Reference picture 4, is a kind of business risk apparatus for evaluating structural representation provided in an embodiment of the present invention.The device bag
Include:Business data processing unit 401, risk score value assessment unit 402 and risk class determining unit 403
Business data processing unit 401, for receiving business datum to be assessed, and according to preset risk rule engine,
Identify the regular collection of business datum matching.
Wherein, business datum includes but is not limited to registration business datum, registering service data, authentication services data, and/
Or, movable anti-brush business datum, etc..Risk behavior rule refers to give birth to based on malicious user accounts information or operation behavior information
Into risk behavior rule, for example, risk behavior rule includes but is not limited to:Malicious user login/access, same address are frequent
Login/access, bad password are frequently logged on/is accessed, etc..
Risk score value assessment unit 402, for many rules in the regular collection, according to the risk pre-established
Assessment models, assess each regular corresponding risk score value;
Risk class determining unit 403, for the corresponding risk score value of many rules to be added up, and will it is cumulative after
The risk total score threshold value of each risk class of the risk score value summation with pre-setting is compared, and determines the wind of business datum
Dangerous grade.
It is preferred that, the device also includes:Risk evaluation model sets up unit 404, for setting up the risk evaluation model;
The risk evaluation model sets up unit 404 specifically for obtaining sample data;Sample data to acquisition is trained, and is obtained
To each regular Model Weight;Each regular Model Weight is converted into by score value by Linear Mapping;According to same type
The risk of rule triggering frequency, the score value for the same type rule that adds up successively;And, the corresponding risk of the different risk class of setting is total
Divide threshold value
It is preferred that, risk evaluation model sets up unit 404 specifically for the sample data to acquisition carries out logistic time
Return training, obtain each regular Model Weight.Logistic regression essence is a kind of sorting algorithm, has used a sigmod
Function, the linear weighted function result of feature is mapped between 0 to 1, and this can just regard that data sample point belongs to a certain as
The probability of class.If result is closer to 0 or 1, illustrate that the confidence level of classification results is higher.
It is preferred that, the business data processing unit 401 specifically for:Using the risk rule engine, based on safety
Malicious user accounts information or operation behavior information in data warehouse, match corresponding each risk behavior rule of business datum
Then constitute the regular collection.
Being introduced as before, risk rule engine is generally comprised in risk system, in this step, it is possible to use risk rule is drawn
Hold up, based on the malicious user information in secure data warehouse, match corresponding each risk behavior rule of business datum and constitute
Regular collection.Wherein, account information includes but is not limited to cell-phone number, IP, user name;Operation behavior information includes but is not limited to frequency
It is numerous to log in ,/access, bad password is repeatedly logged in/and access, etc. for example, being frequently logged on using same IP address.
Reference picture 5, is a kind of air control system structure diagram provided in an embodiment of the present invention.The system includes:At business
Device 501, service access device 502, risk rule engine 503, secure data warehouse 504, intercept process device 505 are managed, it is special
Other, the system also includes risk assessment device 506, wherein:
The business processing device 501, is linked into risk rule by the service access model 502 by business datum and draws
Hold up 503;
The risk rule engine 503, malicious user accounts information or operation behavior in secure data warehouse 504
Information, matches corresponding each risk behavior rule of business datum and constitutes risk rule set;
The risk assessment device 506, for many rules in the regular collection, according to the risk pre-established
Assessment models, assess each regular corresponding risk score value, and the corresponding risk score value of many rules is added up, and will be tired
Plus after the risk total score threshold value of each risk class of the risk score value summation with pre-setting be compared, determine business number
According to risk class;
The intercept process device 505, it is right based on preset interception strategy for the risk class according to business datum
Business datum is intercepted.
It is preferred that, the risk assessment device 506 is additionally operable to set up risk evaluation model, specifically, obtaining sample data;
Sample data to acquisition is trained, and obtains each regular Model Weight;By Linear Mapping by each regular model
Weight is converted into score value;The risk of frequency is triggered according to described each regular sub-rule, point for each sub-rule that adds up successively
It is worth to the regular score value;And, the corresponding risk total score threshold value of the different risk class of setting.
It is preferred that, the business datum includes:Business datum, registering service data, authentication services data are registered, and/or,
The anti-brush business datum of activity;The risk behavior rule refers to what is generated based on malicious user accounts information or operation behavior information
Risk behavior rule.
For device embodiment, because it is substantially similar to embodiment of the method, so description is fairly simple, it is related
Part illustrates referring to the part of embodiment of the method.
Each embodiment in this specification is described by the way of progressive, what each embodiment was stressed be with
Between the difference of other embodiment, each embodiment identical similar part mutually referring to.
It should be understood by those skilled in the art that, the embodiment of the embodiment of the present invention can be provided as method, device or calculate
Machine program product.Therefore, the embodiment of the present invention can using complete hardware embodiment, complete software embodiment or combine software and
The form of the embodiment of hardware aspect.Moreover, the embodiment of the present invention can use it is one or more wherein include computer can
With in the computer-usable storage medium (including but is not limited to magnetic disk storage, CD-ROM, optical memory etc.) of program code
The form of the computer program product of implementation.
The embodiment of the present invention is with reference to method according to embodiments of the present invention, terminal device (system) and computer program
The flow chart and/or block diagram of product is described.It should be understood that can be by computer program instructions implementation process figure and/or block diagram
In each flow and/or square frame and the flow in flow chart and/or block diagram and/or the combination of square frame.These can be provided
Computer program instructions are set to all-purpose computer, special-purpose computer, Embedded Processor or other programmable data processing terminals
Standby processor is to produce a machine so that held by the processor of computer or other programmable data processing terminal equipments
Capable instruction is produced for realizing in one flow of flow chart or multiple flows and/or one square frame of block diagram or multiple square frames
The device for the function of specifying.
These computer program instructions, which may be alternatively stored in, can guide computer or other programmable data processing terminal equipments
In the computer-readable memory worked in a specific way so that the instruction being stored in the computer-readable memory produces bag
The manufacture of command device is included, the command device is realized in one flow of flow chart or multiple flows and/or one side of block diagram
The function of being specified in frame or multiple square frames.
These computer program instructions can be also loaded into computer or other programmable data processing terminal equipments so that
Series of operation steps is performed on computer or other programmable terminal equipments to produce computer implemented processing, so that
The instruction performed on computer or other programmable terminal equipments is provided for realizing in one flow of flow chart or multiple flows
And/or specified in one square frame of block diagram or multiple square frames function the step of.
Although having been described for the preferred embodiment of the embodiment of the present invention, those skilled in the art once know base
This creative concept, then can make other change and modification to these embodiments.So, appended claims are intended to be construed to
Including preferred embodiment and fall into having altered and changing for range of embodiment of the invention.
Finally, in addition it is also necessary to explanation, herein, such as first and second or the like relational terms be used merely to by
One entity or operation make a distinction with another entity or operation, and not necessarily require or imply these entities or operation
Between there is any this actual relation or order.Moreover, term " comprising ", "comprising" or its any other variant meaning
Covering including for nonexcludability, so that process, method, article or terminal device including a series of key elements are not only wrapped
Those key elements, but also other key elements including being not expressly set out are included, or also include being this process, method, article
Or the intrinsic key element of terminal device.In the absence of more restrictions, by wanting that sentence "including a ..." is limited
Element, it is not excluded that also there is other identical element in the process including the key element, method, article or terminal device.
Above to the dispatching method and system of a kind of relevant database provided by the present invention, it is described in detail,
Specific case used herein is set forth to the principle and embodiment of the present invention, and the explanation of above example is to use
Understand the method and its core concept of the present invention in help;Simultaneously for those of ordinary skill in the art, according to the present invention's
Thought, will change in specific embodiments and applications, in summary, and this specification content should not be construed as
Limitation of the present invention.
Claims (13)
1. a kind of business risk appraisal procedure, it is characterised in that including:
Business datum to be assessed is received, and according to preset risk rule engine, identifies the risk behavior of business datum matching
Regular collection;
To many rules in the regular collection, according to the risk evaluation model pre-established, each rule is assessed corresponding
Risk score value;
The corresponding risk score value of many rules is added up, and will it is cumulative after risk score value summation and pre-set each
The risk total score threshold value of risk class is compared, and determines the risk class of business datum.
2. the method as described in claim 1, it is characterised in that also include:
The risk evaluation model is set up, including:Obtain sample data;Sample data to acquisition is trained, and obtains each
The Model Weight of rule;Each regular Model Weight is converted into by score value by Linear Mapping;According to each in the rule
Sub-rule triggers the risk of frequency, and the score value for each sub-rule that adds up successively obtains the regular score value;And, set different
The corresponding risk total score threshold value of risk class.
3. method as claimed in claim 2, it is characterised in that the sample data to acquisition carries out logistic regression training,
Obtain each regular Model Weight.
4. the method as described in claim 1, it is characterised in that described according to preset risk rule engine, identifies business
The regular collection of Data Matching, including:
The risk rule engine, based on the malicious user accounts information or operation behavior information in secure data warehouse, matching
Go out corresponding each risk behavior rule of business datum and constitute the regular collection.
5. the method as described in claim any one of 1-4, it is characterised in that the business datum includes:Registration business datum,
Registering service data, authentication services data, and/or, movable anti-brush business datum;The risk behavior rule refers to based on malice
User account information or the risk behavior rule of operation behavior information generation.
6. a kind of business risk apparatus for evaluating, it is characterised in that including:
Business data processing unit, for receiving business datum to be assessed, and according to preset risk rule engine, identifies industry
The regular collection for Data Matching of being engaged in;
Risk score value assessment unit, for many rules in the regular collection, according to the risk assessment mould pre-established
Type, assesses each regular corresponding risk score value;
Risk class determining unit, for the corresponding risk score value of many rules to be added up, and will it is cumulative after risk point
The risk total score threshold value of each risk class of the value summation with pre-setting is compared, and determines risk of business datum etc.
Level.
7. device as claimed in claim 6, it is characterised in that also include:Risk evaluation model sets up unit, for setting up
State risk evaluation model;
The risk evaluation model set up unit specifically for:Obtain sample data;Sample data to acquisition is trained, and is obtained
To each regular Model Weight;Each regular Model Weight is converted into by score value by Linear Mapping;According to the rule
In each sub-rule trigger frequency risk, successively add up each sub-rule score value obtain the regular score value;And, if
Put the corresponding risk total score threshold value of different risk class.
8. device as claimed in claim 7, it is characterised in that the risk evaluation model sets up unit specifically for obtaining
The sample data taken carries out logistic regression training, obtains each regular Model Weight.
9. device as claimed in claim 6, it is characterised in that the business data processing unit specifically for:Using described
Risk rule engine, based on the malicious user accounts information or operation behavior information in secure data warehouse, matches business number
The regular collection is constituted according to each corresponding risk behavior rule.
10. the device as described in claim any one of 6-9, it is characterised in that the business datum includes:Registration business number
According to, registering service data, authentication services data, and/or, movable anti-brush business datum;The risk behavior rule refers to be based on
Malicious user accounts information or the risk behavior rule of operation behavior information generation.
11. a kind of air control system, including business processing device, service access device, risk rule engine, secure data warehouse,
Intercept process device, it is characterised in that the system also includes risk assessment device, wherein:
The business processing device, risk rule engine is linked into by business datum by the service access model;
The risk rule engine, malicious user accounts information or operation behavior information in secure data warehouse, matching
Go out corresponding each risk behavior rule of business datum and constitute risk rule set;
The risk assessment device, for many rules in the regular collection, according to the risk assessment mould pre-established
Type, assesses each regular corresponding risk score value, and the corresponding risk score value of many rules is added up, and will it is cumulative after
The risk total score threshold value of each risk class of the risk score value summation with pre-setting is compared, and determines the wind of business datum
Dangerous grade;
The intercept process device, for the risk class according to business datum, based on preset interception strategy, to business datum
Intercepted.
12. system as claimed in claim 11, it is characterised in that the risk assessment device is additionally operable to set up risk assessment mould
Type, specifically, obtaining sample data;Sample data to acquisition is trained, and obtains each regular Model Weight;Pass through line
Property mapping each regular Model Weight is converted into score value;The risk of frequency is triggered according to described each regular sub-rule,
The score value of each cumulative sub-rule obtains the regular score value successively;And, the corresponding risk of the different risk class of setting is total
Divide threshold value.
13. the system as described in claim 11 or 12, it is characterised in that the business datum includes:Register business datum, step on
Business datum, authentication services data are recorded, and/or, movable anti-brush business datum;The risk behavior rule refers to use based on malice
Family accounts information or the risk behavior rule of operation behavior information generation.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710117674.3A CN107067157A (en) | 2017-03-01 | 2017-03-01 | Business risk appraisal procedure, device and air control system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710117674.3A CN107067157A (en) | 2017-03-01 | 2017-03-01 | Business risk appraisal procedure, device and air control system |
Publications (1)
Publication Number | Publication Date |
---|---|
CN107067157A true CN107067157A (en) | 2017-08-18 |
Family
ID=59622943
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201710117674.3A Pending CN107067157A (en) | 2017-03-01 | 2017-03-01 | Business risk appraisal procedure, device and air control system |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN107067157A (en) |
Cited By (65)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107679897A (en) * | 2017-09-25 | 2018-02-09 | 北京京东尚科信息技术有限公司 | A kind of security risk control method and device |
CN107886198A (en) * | 2017-11-13 | 2018-04-06 | 阿里巴巴集团控股有限公司 | A kind of determination method and device of air control decision-making critical value |
CN107896287A (en) * | 2017-09-30 | 2018-04-10 | 上海壹账通金融科技有限公司 | Phone number risk monitoring method and mobile terminal |
CN107911334A (en) * | 2017-08-31 | 2018-04-13 | 上海壹账通金融科技有限公司 | Ip address risk monitoring method and application server |
CN108090829A (en) * | 2017-12-21 | 2018-05-29 | 深圳市买买提信息科技有限公司 | A kind of data managing method, data administrator and electronic equipment |
CN108280762A (en) * | 2018-01-19 | 2018-07-13 | 平安科技(深圳)有限公司 | Customer risk ranking method, server and computer readable storage medium |
CN108305012A (en) * | 2018-02-11 | 2018-07-20 | 深圳市快付通金融网络科技服务有限公司 | A kind of air control regulation obtaining method and device |
CN108399532A (en) * | 2018-04-12 | 2018-08-14 | 阿里巴巴集团控股有限公司 | The method and apparatus of the available resources of processing business |
CN108446821A (en) * | 2018-02-07 | 2018-08-24 | 中国平安人寿保险股份有限公司 | Method, apparatus, storage medium and the terminal of risk monitoring and control |
CN108460523A (en) * | 2018-02-12 | 2018-08-28 | 阿里巴巴集团控股有限公司 | A kind of air control rule generating method and device |
CN108491304A (en) * | 2018-03-06 | 2018-09-04 | 平安科技(深圳)有限公司 | Electronic device, operation system risk control method and storage medium |
CN108536846A (en) * | 2018-04-13 | 2018-09-14 | 深圳壹账通智能科技有限公司 | Air control engine variable library rule adaptation method, device, equipment and storage medium |
CN108875388A (en) * | 2018-05-31 | 2018-11-23 | 康键信息技术(深圳)有限公司 | Real-time risk control method, device and computer readable storage medium |
CN108876133A (en) * | 2018-06-07 | 2018-11-23 | 中国平安人寿保险股份有限公司 | Risk assessment processing method, device, server and medium based on business information |
CN109034209A (en) * | 2018-07-03 | 2018-12-18 | 阿里巴巴集团控股有限公司 | The training method and device of the real-time identification model of active risk |
CN109190876A (en) * | 2018-07-16 | 2019-01-11 | 阿里巴巴集团控股有限公司 | A kind of safety access method and device of service product |
CN109194641A (en) * | 2018-08-27 | 2019-01-11 | 广东工业大学 | A kind of transmission method of business datum, device, equipment and storage medium |
CN109214683A (en) * | 2018-09-06 | 2019-01-15 | 平安科技(深圳)有限公司 | A kind of Application of risk decision method and device |
CN109255517A (en) * | 2018-07-27 | 2019-01-22 | 阿里巴巴集团控股有限公司 | Generation method, device, server and the readable storage medium storing program for executing of air control strategy |
CN109345374A (en) * | 2018-09-17 | 2019-02-15 | 平安科技(深圳)有限公司 | Risk control method, device, computer equipment and storage medium |
CN109426912A (en) * | 2017-08-31 | 2019-03-05 | 阿里巴巴集团控股有限公司 | Air control system optimization method, system, device and electronic equipment |
CN109461069A (en) * | 2018-09-25 | 2019-03-12 | 深圳壹账通智能科技有限公司 | Air control method, apparatus, equipment and readable storage medium storing program for executing based on service node |
CN109544163A (en) * | 2018-11-30 | 2019-03-29 | 华青融天(北京)软件股份有限公司 | A kind of risk control method, device, equipment and the medium of user's payment behavior |
CN109636400A (en) * | 2018-11-29 | 2019-04-16 | 国家新闻出版广电总局广播电视规划院 | A kind of payment transaction risk control method and device |
CN109639633A (en) * | 2018-11-02 | 2019-04-16 | 平安科技(深圳)有限公司 | Abnormal flow data identification method, device, medium and electronic equipment |
CN109784934A (en) * | 2019-03-14 | 2019-05-21 | 浙江鲸腾网络科技有限公司 | A kind of transaction risk control method, apparatus and relevant device and medium |
CN109816390A (en) * | 2019-01-03 | 2019-05-28 | 深圳壹账通智能科技有限公司 | Anti- fraud analysis processing method, device and computer equipment based on transaction data |
CN109861985A (en) * | 2019-01-02 | 2019-06-07 | 平安科技(深圳)有限公司 | IP air control method, apparatus, equipment and the storage medium divided based on risk class |
CN109857373A (en) * | 2018-12-18 | 2019-06-07 | 平安科技(深圳)有限公司 | Business data processing method, device, computer equipment and storage medium |
CN109873836A (en) * | 2019-03-29 | 2019-06-11 | 上海上湖信息技术有限公司 | A kind of methods of risk assessment and device of data |
CN109978547A (en) * | 2017-12-28 | 2019-07-05 | 北京京东尚科信息技术有限公司 | Risk behavior control method and system, equipment and storage medium |
CN110033171A (en) * | 2019-03-19 | 2019-07-19 | 阿里巴巴集团控股有限公司 | A kind of method, system platform and medium identifying financial company's risk |
CN110033092A (en) * | 2019-01-31 | 2019-07-19 | 阿里巴巴集团控股有限公司 | Data label generation, model training, event recognition method and device |
CN110059905A (en) * | 2018-12-13 | 2019-07-26 | 阿里巴巴集团控股有限公司 | Risk quantification method, Risk Identification Method, system and storage medium |
CN110119882A (en) * | 2019-04-12 | 2019-08-13 | 国家计算机网络与信息安全管理中心 | A kind of platform risk monitoring and control method, apparatus, equipment and storage medium |
CN110135693A (en) * | 2019-04-12 | 2019-08-16 | 北京中科闻歌科技股份有限公司 | A kind of Risk Identification Method, device, equipment and storage medium |
CN110147967A (en) * | 2019-05-28 | 2019-08-20 | 阿里巴巴集团控股有限公司 | Risk prevention system method and device |
CN110347566A (en) * | 2019-06-25 | 2019-10-18 | 阿里巴巴集团控股有限公司 | For carrying out the method and device of measures of effectiveness to registration air control model |
CN110349013A (en) * | 2019-07-12 | 2019-10-18 | 蔷薇智慧科技有限公司 | Risk control method and device |
CN110555630A (en) * | 2019-09-11 | 2019-12-10 | 北京奇艺世纪科技有限公司 | Data processing method and device |
CN110688316A (en) * | 2019-09-27 | 2020-01-14 | 国家计算机网络与信息安全管理中心 | Rule engine-based mobile application risk level reasoning evaluation method and device |
CN110691084A (en) * | 2019-09-27 | 2020-01-14 | 武汉极意网络科技有限公司 | Adaptation method and device of wind control rule engine |
CN110737889A (en) * | 2019-10-24 | 2020-01-31 | 武汉极意网络科技有限公司 | Business wind control adjustment method, device, equipment and storage medium |
CN110738401A (en) * | 2019-09-25 | 2020-01-31 | 支付宝(杭州)信息技术有限公司 | Complaint processing method and device and electronic equipment |
CN110852854A (en) * | 2018-08-01 | 2020-02-28 | 阿里巴巴集团控股有限公司 | Generation method of quantitative yield model and evaluation method of risk control strategy |
CN111078757A (en) * | 2019-12-19 | 2020-04-28 | 武汉极意网络科技有限公司 | Autonomous learning business wind control rule engine system and risk assessment method |
WO2020082559A1 (en) * | 2018-10-25 | 2020-04-30 | 深圳壹账通智能科技有限公司 | Risk detection method, apparatus and device based on association graph, and storage medium |
CN111160740A (en) * | 2019-12-19 | 2020-05-15 | 上海赛可出行科技服务有限公司 | Network taxi appointment risk control system and control method |
CN111544891A (en) * | 2020-04-27 | 2020-08-18 | 盛趣信息技术(上海)有限公司 | Unified business wind control system and method |
CN111563254A (en) * | 2020-05-07 | 2020-08-21 | 中国工商银行股份有限公司 | Threat risk processing method and apparatus for product, computer system and medium |
CN111681004A (en) * | 2020-04-24 | 2020-09-18 | 厦门美柚股份有限公司 | Business wind control method and system |
CN111859377A (en) * | 2020-07-27 | 2020-10-30 | 成都安恒信息技术有限公司 | In-business safety auditing method based on user behavior analysis |
CN112288279A (en) * | 2020-10-30 | 2021-01-29 | 平安医疗健康管理股份有限公司 | Business risk assessment method and device based on natural language processing and linear regression |
CN112351022A (en) * | 2020-10-30 | 2021-02-09 | 新华三技术有限公司 | Security protection method and device for trust zone |
CN112346995A (en) * | 2020-12-04 | 2021-02-09 | 中信银行股份有限公司 | Construction method and device of test risk estimation model based on banking industry |
WO2021031607A1 (en) * | 2019-08-22 | 2021-02-25 | 上海哔哩哔哩科技有限公司 | Risk control method, computer device, and readable storage medium |
CN112418259A (en) * | 2019-08-22 | 2021-02-26 | 上海哔哩哔哩科技有限公司 | Method for configuring real-time rules based on user behaviors in live broadcast process, computer equipment and readable storage medium |
CN112446617A (en) * | 2020-11-27 | 2021-03-05 | 平安普惠企业管理有限公司 | Risk assessment method and device, computer equipment and readable storage medium |
CN112463840A (en) * | 2021-02-01 | 2021-03-09 | 杭州天谷信息科技有限公司 | Real-time business wind control system and method based on rule engine |
CN112651619A (en) * | 2020-12-22 | 2021-04-13 | 上海哔哩哔哩科技有限公司 | Business-oriented wind control method and device |
CN113032435A (en) * | 2021-03-18 | 2021-06-25 | 上海数禾信息科技有限公司 | Data processing method and device for risk assessment |
CN113269378A (en) * | 2021-07-20 | 2021-08-17 | 武汉极意网络科技有限公司 | Network traffic processing method and device, electronic equipment and readable storage medium |
CN113723967A (en) * | 2018-06-21 | 2021-11-30 | 创新先进技术有限公司 | Business risk analysis method, device and equipment |
CN115004652A (en) * | 2020-02-24 | 2022-09-02 | 深圳市欢太科技有限公司 | Business wind control processing method and device, electronic equipment and storage medium |
CN115328975A (en) * | 2022-10-18 | 2022-11-11 | 北京珞安科技有限责任公司 | Patrol data uploading system and method based on industrial daily patrol |
Citations (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20110125672A1 (en) * | 2004-06-08 | 2011-05-26 | Rosenthal Collins Group, L.L.C. | Method and system for providing electronic information for risk assesement and management via dynamic total net worth for multi-market electronic trading |
CN103514566A (en) * | 2013-10-15 | 2014-01-15 | 国家电网公司 | Risk control system and method |
CN104881783A (en) * | 2015-05-14 | 2015-09-02 | 中国科学院信息工程研究所 | E-bank account fraudulent conduct and risk detecting method and system |
CN105279382A (en) * | 2015-11-10 | 2016-01-27 | 成都数联易康科技有限公司 | Medical insurance abnormal data on-line intelligent detection method |
CN105590055A (en) * | 2014-10-23 | 2016-05-18 | 阿里巴巴集团控股有限公司 | Method and apparatus for identifying trustworthy user behavior in network interaction system |
CN105763555A (en) * | 2016-03-31 | 2016-07-13 | 世纪禾光科技发展(北京)有限公司 | Website risk control server and method and client |
CN105809035A (en) * | 2016-03-07 | 2016-07-27 | 南京邮电大学 | Android application real-time behavior based malicious software detection method and system |
CN106067088A (en) * | 2016-05-30 | 2016-11-02 | 中国邮政储蓄银行股份有限公司 | E-bank accesses detection method and the device of behavior |
-
2017
- 2017-03-01 CN CN201710117674.3A patent/CN107067157A/en active Pending
Patent Citations (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20110125672A1 (en) * | 2004-06-08 | 2011-05-26 | Rosenthal Collins Group, L.L.C. | Method and system for providing electronic information for risk assesement and management via dynamic total net worth for multi-market electronic trading |
CN103514566A (en) * | 2013-10-15 | 2014-01-15 | 国家电网公司 | Risk control system and method |
CN105590055A (en) * | 2014-10-23 | 2016-05-18 | 阿里巴巴集团控股有限公司 | Method and apparatus for identifying trustworthy user behavior in network interaction system |
CN104881783A (en) * | 2015-05-14 | 2015-09-02 | 中国科学院信息工程研究所 | E-bank account fraudulent conduct and risk detecting method and system |
CN105279382A (en) * | 2015-11-10 | 2016-01-27 | 成都数联易康科技有限公司 | Medical insurance abnormal data on-line intelligent detection method |
CN105809035A (en) * | 2016-03-07 | 2016-07-27 | 南京邮电大学 | Android application real-time behavior based malicious software detection method and system |
CN105763555A (en) * | 2016-03-31 | 2016-07-13 | 世纪禾光科技发展(北京)有限公司 | Website risk control server and method and client |
CN106067088A (en) * | 2016-05-30 | 2016-11-02 | 中国邮政储蓄银行股份有限公司 | E-bank accesses detection method and the device of behavior |
Non-Patent Citations (1)
Title |
---|
陈刚: "《我国商业银行信用风险的度量与评估研究》", 30 November 2013, 知识产权出版社 * |
Cited By (84)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107911334A (en) * | 2017-08-31 | 2018-04-13 | 上海壹账通金融科技有限公司 | Ip address risk monitoring method and application server |
CN109426912A (en) * | 2017-08-31 | 2019-03-05 | 阿里巴巴集团控股有限公司 | Air control system optimization method, system, device and electronic equipment |
CN107679897A (en) * | 2017-09-25 | 2018-02-09 | 北京京东尚科信息技术有限公司 | A kind of security risk control method and device |
CN107896287A (en) * | 2017-09-30 | 2018-04-10 | 上海壹账通金融科技有限公司 | Phone number risk monitoring method and mobile terminal |
CN107896287B (en) * | 2017-09-30 | 2021-06-18 | 深圳壹账通智能科技有限公司 | Mobile phone number risk monitoring method, mobile terminal and computer readable storage medium |
CN107886198B (en) * | 2017-11-13 | 2023-04-07 | 创新先进技术有限公司 | Method and device for determining wind control decision critical value |
CN107886198A (en) * | 2017-11-13 | 2018-04-06 | 阿里巴巴集团控股有限公司 | A kind of determination method and device of air control decision-making critical value |
CN108090829A (en) * | 2017-12-21 | 2018-05-29 | 深圳市买买提信息科技有限公司 | A kind of data managing method, data administrator and electronic equipment |
CN109978547A (en) * | 2017-12-28 | 2019-07-05 | 北京京东尚科信息技术有限公司 | Risk behavior control method and system, equipment and storage medium |
CN108280762A (en) * | 2018-01-19 | 2018-07-13 | 平安科技(深圳)有限公司 | Customer risk ranking method, server and computer readable storage medium |
CN108446821A (en) * | 2018-02-07 | 2018-08-24 | 中国平安人寿保险股份有限公司 | Method, apparatus, storage medium and the terminal of risk monitoring and control |
CN108305012A (en) * | 2018-02-11 | 2018-07-20 | 深圳市快付通金融网络科技服务有限公司 | A kind of air control regulation obtaining method and device |
CN108460523A (en) * | 2018-02-12 | 2018-08-28 | 阿里巴巴集团控股有限公司 | A kind of air control rule generating method and device |
WO2019154162A1 (en) * | 2018-02-12 | 2019-08-15 | 阿里巴巴集团控股有限公司 | Risk control rule generation method and apparatus |
CN108491304A (en) * | 2018-03-06 | 2018-09-04 | 平安科技(深圳)有限公司 | Electronic device, operation system risk control method and storage medium |
CN108491304B (en) * | 2018-03-06 | 2019-12-10 | 平安科技(深圳)有限公司 | electronic device, business system risk control method and storage medium |
CN108399532A (en) * | 2018-04-12 | 2018-08-14 | 阿里巴巴集团控股有限公司 | The method and apparatus of the available resources of processing business |
CN108536846A (en) * | 2018-04-13 | 2018-09-14 | 深圳壹账通智能科技有限公司 | Air control engine variable library rule adaptation method, device, equipment and storage medium |
CN108875388A (en) * | 2018-05-31 | 2018-11-23 | 康键信息技术(深圳)有限公司 | Real-time risk control method, device and computer readable storage medium |
CN108876133A (en) * | 2018-06-07 | 2018-11-23 | 中国平安人寿保险股份有限公司 | Risk assessment processing method, device, server and medium based on business information |
CN108876133B (en) * | 2018-06-07 | 2022-05-17 | 中国平安人寿保险股份有限公司 | Risk assessment processing method, device, server and medium based on business information |
CN113723967A (en) * | 2018-06-21 | 2021-11-30 | 创新先进技术有限公司 | Business risk analysis method, device and equipment |
CN109034209A (en) * | 2018-07-03 | 2018-12-18 | 阿里巴巴集团控股有限公司 | The training method and device of the real-time identification model of active risk |
CN109034209B (en) * | 2018-07-03 | 2021-07-30 | 创新先进技术有限公司 | Training method and device for active risk real-time recognition model |
CN109190876A (en) * | 2018-07-16 | 2019-01-11 | 阿里巴巴集团控股有限公司 | A kind of safety access method and device of service product |
CN109190876B (en) * | 2018-07-16 | 2022-02-01 | 创新先进技术有限公司 | Safe access method and device for service product |
CN109255517A (en) * | 2018-07-27 | 2019-01-22 | 阿里巴巴集团控股有限公司 | Generation method, device, server and the readable storage medium storing program for executing of air control strategy |
CN109255517B (en) * | 2018-07-27 | 2022-04-26 | 创新先进技术有限公司 | Method and device for generating wind control strategy, server and readable storage medium |
CN110852854A (en) * | 2018-08-01 | 2020-02-28 | 阿里巴巴集团控股有限公司 | Generation method of quantitative yield model and evaluation method of risk control strategy |
CN110852854B (en) * | 2018-08-01 | 2023-10-31 | 创新先进技术有限公司 | Method for generating quantitative gain model and method for evaluating risk control strategy |
CN109194641A (en) * | 2018-08-27 | 2019-01-11 | 广东工业大学 | A kind of transmission method of business datum, device, equipment and storage medium |
CN109214683A (en) * | 2018-09-06 | 2019-01-15 | 平安科技(深圳)有限公司 | A kind of Application of risk decision method and device |
CN109345374A (en) * | 2018-09-17 | 2019-02-15 | 平安科技(深圳)有限公司 | Risk control method, device, computer equipment and storage medium |
CN109345374B (en) * | 2018-09-17 | 2023-04-18 | 平安科技(深圳)有限公司 | Risk control method and device, computer equipment and storage medium |
CN109461069A (en) * | 2018-09-25 | 2019-03-12 | 深圳壹账通智能科技有限公司 | Air control method, apparatus, equipment and readable storage medium storing program for executing based on service node |
WO2020082559A1 (en) * | 2018-10-25 | 2020-04-30 | 深圳壹账通智能科技有限公司 | Risk detection method, apparatus and device based on association graph, and storage medium |
CN109639633B (en) * | 2018-11-02 | 2021-11-12 | 平安科技(深圳)有限公司 | Abnormal flow data identification method, abnormal flow data identification device, abnormal flow data identification medium, and electronic device |
WO2020087758A1 (en) * | 2018-11-02 | 2020-05-07 | 平安科技(深圳)有限公司 | Abnormal traffic data identification method, apparatus, computer device, and storage medium |
CN109639633A (en) * | 2018-11-02 | 2019-04-16 | 平安科技(深圳)有限公司 | Abnormal flow data identification method, device, medium and electronic equipment |
CN109636400A (en) * | 2018-11-29 | 2019-04-16 | 国家新闻出版广电总局广播电视规划院 | A kind of payment transaction risk control method and device |
CN109544163A (en) * | 2018-11-30 | 2019-03-29 | 华青融天(北京)软件股份有限公司 | A kind of risk control method, device, equipment and the medium of user's payment behavior |
CN110059905A (en) * | 2018-12-13 | 2019-07-26 | 阿里巴巴集团控股有限公司 | Risk quantification method, Risk Identification Method, system and storage medium |
CN110059905B (en) * | 2018-12-13 | 2023-04-18 | 创新先进技术有限公司 | Risk quantification method, risk identification system and storage medium |
CN109857373A (en) * | 2018-12-18 | 2019-06-07 | 平安科技(深圳)有限公司 | Business data processing method, device, computer equipment and storage medium |
CN109861985B (en) * | 2019-01-02 | 2022-12-27 | 平安科技(深圳)有限公司 | IP wind control method, device, equipment and storage medium based on risk grade division |
CN109861985A (en) * | 2019-01-02 | 2019-06-07 | 平安科技(深圳)有限公司 | IP air control method, apparatus, equipment and the storage medium divided based on risk class |
CN109816390A (en) * | 2019-01-03 | 2019-05-28 | 深圳壹账通智能科技有限公司 | Anti- fraud analysis processing method, device and computer equipment based on transaction data |
CN110033092A (en) * | 2019-01-31 | 2019-07-19 | 阿里巴巴集团控股有限公司 | Data label generation, model training, event recognition method and device |
CN109784934A (en) * | 2019-03-14 | 2019-05-21 | 浙江鲸腾网络科技有限公司 | A kind of transaction risk control method, apparatus and relevant device and medium |
CN110033171A (en) * | 2019-03-19 | 2019-07-19 | 阿里巴巴集团控股有限公司 | A kind of method, system platform and medium identifying financial company's risk |
CN109873836A (en) * | 2019-03-29 | 2019-06-11 | 上海上湖信息技术有限公司 | A kind of methods of risk assessment and device of data |
CN110135693A (en) * | 2019-04-12 | 2019-08-16 | 北京中科闻歌科技股份有限公司 | A kind of Risk Identification Method, device, equipment and storage medium |
CN110119882A (en) * | 2019-04-12 | 2019-08-13 | 国家计算机网络与信息安全管理中心 | A kind of platform risk monitoring and control method, apparatus, equipment and storage medium |
CN110147967A (en) * | 2019-05-28 | 2019-08-20 | 阿里巴巴集团控股有限公司 | Risk prevention system method and device |
CN110347566A (en) * | 2019-06-25 | 2019-10-18 | 阿里巴巴集团控股有限公司 | For carrying out the method and device of measures of effectiveness to registration air control model |
CN110349013A (en) * | 2019-07-12 | 2019-10-18 | 蔷薇智慧科技有限公司 | Risk control method and device |
CN112418259B (en) * | 2019-08-22 | 2023-05-26 | 上海哔哩哔哩科技有限公司 | Real-time rule configuration method based on user behavior in live broadcast process, computer equipment and readable storage medium |
WO2021031607A1 (en) * | 2019-08-22 | 2021-02-25 | 上海哔哩哔哩科技有限公司 | Risk control method, computer device, and readable storage medium |
CN112418259A (en) * | 2019-08-22 | 2021-02-26 | 上海哔哩哔哩科技有限公司 | Method for configuring real-time rules based on user behaviors in live broadcast process, computer equipment and readable storage medium |
CN110555630A (en) * | 2019-09-11 | 2019-12-10 | 北京奇艺世纪科技有限公司 | Data processing method and device |
CN110555630B (en) * | 2019-09-11 | 2022-08-12 | 北京奇艺世纪科技有限公司 | Data processing method and device |
CN110738401A (en) * | 2019-09-25 | 2020-01-31 | 支付宝(杭州)信息技术有限公司 | Complaint processing method and device and electronic equipment |
CN110688316A (en) * | 2019-09-27 | 2020-01-14 | 国家计算机网络与信息安全管理中心 | Rule engine-based mobile application risk level reasoning evaluation method and device |
CN110691084A (en) * | 2019-09-27 | 2020-01-14 | 武汉极意网络科技有限公司 | Adaptation method and device of wind control rule engine |
CN110737889A (en) * | 2019-10-24 | 2020-01-31 | 武汉极意网络科技有限公司 | Business wind control adjustment method, device, equipment and storage medium |
CN111078757B (en) * | 2019-12-19 | 2023-09-08 | 武汉极意网络科技有限公司 | Autonomous learning business wind control rule engine system and risk assessment method |
CN111078757A (en) * | 2019-12-19 | 2020-04-28 | 武汉极意网络科技有限公司 | Autonomous learning business wind control rule engine system and risk assessment method |
CN111160740A (en) * | 2019-12-19 | 2020-05-15 | 上海赛可出行科技服务有限公司 | Network taxi appointment risk control system and control method |
CN115004652A (en) * | 2020-02-24 | 2022-09-02 | 深圳市欢太科技有限公司 | Business wind control processing method and device, electronic equipment and storage medium |
CN111681004A (en) * | 2020-04-24 | 2020-09-18 | 厦门美柚股份有限公司 | Business wind control method and system |
CN111544891A (en) * | 2020-04-27 | 2020-08-18 | 盛趣信息技术(上海)有限公司 | Unified business wind control system and method |
CN111563254A (en) * | 2020-05-07 | 2020-08-21 | 中国工商银行股份有限公司 | Threat risk processing method and apparatus for product, computer system and medium |
CN111859377A (en) * | 2020-07-27 | 2020-10-30 | 成都安恒信息技术有限公司 | In-business safety auditing method based on user behavior analysis |
CN112351022B (en) * | 2020-10-30 | 2022-07-12 | 新华三技术有限公司 | Security protection method and device for trust zone |
CN112288279A (en) * | 2020-10-30 | 2021-01-29 | 平安医疗健康管理股份有限公司 | Business risk assessment method and device based on natural language processing and linear regression |
CN112351022A (en) * | 2020-10-30 | 2021-02-09 | 新华三技术有限公司 | Security protection method and device for trust zone |
CN112446617A (en) * | 2020-11-27 | 2021-03-05 | 平安普惠企业管理有限公司 | Risk assessment method and device, computer equipment and readable storage medium |
CN112346995A (en) * | 2020-12-04 | 2021-02-09 | 中信银行股份有限公司 | Construction method and device of test risk estimation model based on banking industry |
CN112346995B (en) * | 2020-12-04 | 2023-08-01 | 中信银行股份有限公司 | Banking industry-based test risk prediction model construction method and device |
CN112651619A (en) * | 2020-12-22 | 2021-04-13 | 上海哔哩哔哩科技有限公司 | Business-oriented wind control method and device |
CN112463840A (en) * | 2021-02-01 | 2021-03-09 | 杭州天谷信息科技有限公司 | Real-time business wind control system and method based on rule engine |
CN113032435A (en) * | 2021-03-18 | 2021-06-25 | 上海数禾信息科技有限公司 | Data processing method and device for risk assessment |
CN113269378A (en) * | 2021-07-20 | 2021-08-17 | 武汉极意网络科技有限公司 | Network traffic processing method and device, electronic equipment and readable storage medium |
CN115328975A (en) * | 2022-10-18 | 2022-11-11 | 北京珞安科技有限责任公司 | Patrol data uploading system and method based on industrial daily patrol |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN107067157A (en) | Business risk appraisal procedure, device and air control system | |
CN107241226A (en) | Fuzz testing method based on industry control proprietary protocol | |
CN106469282A (en) | data access authority control method and device | |
CN107437223A (en) | Credit information checking method, device and equipment | |
CN106067088A (en) | E-bank accesses detection method and the device of behavior | |
CN106202922A (en) | A kind of transformer fault diagnosis system based on clustering algorithm | |
CN107517463A (en) | A kind of recognition methods of telephone number and device | |
CN105740667A (en) | User behavior based information identification method and apparatus | |
CN105471854A (en) | Adaptive boundary abnormity detection method based on multistage strategies | |
CN111104521A (en) | Anti-fraud detection method and detection system based on graph analysis | |
CN106101098B (en) | A kind of information assets recognition methods and device | |
CN106790041B (en) | Internet protocol IP credit database generation method and device | |
CN107231345A (en) | Networks congestion control methods of risk assessment based on AHP | |
CN106850675A (en) | A kind of determination method and device of attack | |
CN109698823A (en) | A kind of Cyberthreat discovery method | |
CN109284333A (en) | Industrial chain data maintaining method and platform based on block chain | |
CN106997437A (en) | A kind of system vulnerability means of defence and device | |
CN104320271B (en) | A kind of network equipment safety evaluation method and device | |
CN113435505A (en) | Construction method and device for safe user portrait | |
CN111934954A (en) | Broadband detection method and device, electronic equipment and storage medium | |
CN104102694B (en) | Tree node sort method and tree node collator | |
CN106330811A (en) | Domain name credibility determination method and device | |
CN105119876A (en) | automatically-generated domain name | |
CN113159638B (en) | Intelligent substation layered health degree index evaluation method and device | |
CN107222497A (en) | Network traffic anomaly monitor method and electronic equipment |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20170818 |
|
RJ01 | Rejection of invention patent application after publication |