CN107294971B - 服务器攻击源的威胁度排序方法 - Google Patents
服务器攻击源的威胁度排序方法 Download PDFInfo
- Publication number
- CN107294971B CN107294971B CN201710488361.9A CN201710488361A CN107294971B CN 107294971 B CN107294971 B CN 107294971B CN 201710488361 A CN201710488361 A CN 201710488361A CN 107294971 B CN107294971 B CN 107294971B
- Authority
- CN
- China
- Prior art keywords
- attack
- stage
- server
- threat
- source
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1425—Traffic logging, e.g. anomaly detection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/1466—Active attacks involving interception, injection, modification, spoofing of data unit addresses, e.g. hijacking, packet injection or TCP sequence number attacks
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer And Data Communications (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
Description
Claims (3)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710488361.9A CN107294971B (zh) | 2017-06-23 | 2017-06-23 | 服务器攻击源的威胁度排序方法 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710488361.9A CN107294971B (zh) | 2017-06-23 | 2017-06-23 | 服务器攻击源的威胁度排序方法 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN107294971A CN107294971A (zh) | 2017-10-24 |
CN107294971B true CN107294971B (zh) | 2020-05-26 |
Family
ID=60098222
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201710488361.9A Active CN107294971B (zh) | 2017-06-23 | 2017-06-23 | 服务器攻击源的威胁度排序方法 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN107294971B (zh) |
Families Citing this family (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108427882B (zh) * | 2018-03-13 | 2022-06-17 | 南京邮电大学 | 基于行为特征抽取的安卓软件动态分析检测法 |
CN108900508B (zh) * | 2018-06-29 | 2021-09-14 | 亚信科技(成都)有限公司 | 高级威胁检测方法及智能探针装置和高级威胁检测系统 |
CN109696892A (zh) * | 2018-12-21 | 2019-04-30 | 上海瀚之友信息技术服务有限公司 | 一种安全自动化系统及其控制方法 |
CN110365638B (zh) * | 2019-05-28 | 2021-07-09 | 杭州电力设备制造有限公司 | 一种泛在物联网室内分布共享上行控制监测方法 |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1770700A (zh) * | 2004-11-01 | 2006-05-10 | 中兴通讯股份有限公司 | 计算机攻击的威胁评估方法 |
CN103748996B (zh) * | 2009-08-20 | 2011-01-12 | 北京理工大学 | 一种攻防对抗环境下的网络安全态势评估方法 |
CN105915536A (zh) * | 2016-05-25 | 2016-08-31 | 重庆洞见信息技术有限公司 | 用于网络靶场的攻击行为实时跟踪分析方法 |
CN106341414A (zh) * | 2016-09-30 | 2017-01-18 | 重庆邮电大学 | 一种基于贝叶斯网络的多步攻击安全态势评估方法 |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20160014148A1 (en) * | 2014-07-10 | 2016-01-14 | Soteria Systems Llc | Web anomaly detection apparatus and method |
-
2017
- 2017-06-23 CN CN201710488361.9A patent/CN107294971B/zh active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1770700A (zh) * | 2004-11-01 | 2006-05-10 | 中兴通讯股份有限公司 | 计算机攻击的威胁评估方法 |
CN103748996B (zh) * | 2009-08-20 | 2011-01-12 | 北京理工大学 | 一种攻防对抗环境下的网络安全态势评估方法 |
CN105915536A (zh) * | 2016-05-25 | 2016-08-31 | 重庆洞见信息技术有限公司 | 用于网络靶场的攻击行为实时跟踪分析方法 |
CN106341414A (zh) * | 2016-09-30 | 2017-01-18 | 重庆邮电大学 | 一种基于贝叶斯网络的多步攻击安全态势评估方法 |
Also Published As
Publication number | Publication date |
---|---|
CN107294971A (zh) | 2017-10-24 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11916944B2 (en) | Network anomaly detection and profiling | |
US10530796B2 (en) | Graph database analysis for network anomaly detection systems | |
CN107294971B (zh) | 服务器攻击源的威胁度排序方法 | |
US10686829B2 (en) | Identifying changes in use of user credentials | |
EP3461103B1 (en) | Ip reputation | |
US10015185B1 (en) | Risk score aggregation for automated detection of access anomalies in a computer network | |
Krishnaveni et al. | Ensemble approach for network threat detection and classification on cloud computing | |
Jia et al. | Big-data analysis of multi-source logs for anomaly detection on network-based system | |
Hu et al. | Anomalous user activity detection in enterprise multi-source logs | |
Kumar et al. | A novel similarity measure for intrusion detection using gaussian function | |
CN110896386B (zh) | 识别安全威胁的方法、装置、存储介质、处理器和终端 | |
Rosli et al. | Clustering analysis for malware behavior detection using registry data | |
Kotlaba et al. | Active Directory Kerberoasting Attack: Detection using Machine Learning Techniques. | |
Atawodi | A machine learning approach to network intrusion detection system using K nearest neighbor and random forest | |
CN110881022A (zh) | 一种大型网络安全态势检测分析方法 | |
Song et al. | A comprehensive approach to detect unknown attacks via intrusion detection alerts | |
Gautam et al. | Anomaly detection system using entropy based technique | |
Kang et al. | ActDetector: A Sequence-based Framework for Network Attack Activity Detection | |
Bravo et al. | Distributed Denial of Service Attack Detection in Application Layer Based on User Behavior. | |
CN116032501A (zh) | 网络异常行为检测方法、装置、电子设备及存储介质 | |
Ghazi et al. | Machine Learning Based Obfuscated Malware Detection in the Cloud Environment with Nature-Inspired Feature Selection | |
Choi et al. | Performance Comparison of Traffic Classification Techniques for Detecting Malicious Network Traffic | |
Kuo et al. | Design and Implementation of a Host-Based Intrusion Detection System for Linux-Based Web Server | |
Anashkin et al. | Implementation of Behavioral Indicators in Threat Detection and User Behavior Analysis | |
Wankhede et al. | Intrusion Detection System Using Hybrid Classification Technique |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
PE01 | Entry into force of the registration of the contract for pledge of patent right | ||
PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: Threat ranking method of server attack sources Effective date of registration: 20211126 Granted publication date: 20200526 Pledgee: Xi'an investment and financing Company limited by guarantee Pledgor: XI'AN JIAOTONG UNIVERSITY JUMP NETWORK TECHNOLOGY Co.,Ltd. Registration number: Y2021610000367 |
|
PC01 | Cancellation of the registration of the contract for pledge of patent right | ||
PC01 | Cancellation of the registration of the contract for pledge of patent right |
Date of cancellation: 20221207 Granted publication date: 20200526 Pledgee: Xi'an investment and financing Company limited by guarantee Pledgor: XI'AN JIAOTONG UNIVERSITY JUMP NETWORK TECHNOLOGY Co.,Ltd. Registration number: Y2021610000367 |