CN107395608A - 一种网络访问异常检测方法及装置 - Google Patents
一种网络访问异常检测方法及装置 Download PDFInfo
- Publication number
- CN107395608A CN107395608A CN201710656409.2A CN201710656409A CN107395608A CN 107395608 A CN107395608 A CN 107395608A CN 201710656409 A CN201710656409 A CN 201710656409A CN 107395608 A CN107395608 A CN 107395608A
- Authority
- CN
- China
- Prior art keywords
- address
- source
- information
- vpn
- monitored
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 51
- 230000005856 abnormality Effects 0.000 title claims abstract description 22
- 230000002159 abnormal effect Effects 0.000 claims abstract description 42
- 238000001514 detection method Methods 0.000 claims abstract description 28
- 230000001052 transient effect Effects 0.000 claims description 7
- 238000004891 communication Methods 0.000 claims description 3
- 230000005055 memory storage Effects 0.000 claims description 2
- 230000006399 behavior Effects 0.000 description 4
- 238000004590 computer program Methods 0.000 description 4
- 238000005516 engineering process Methods 0.000 description 3
- 238000010586 diagram Methods 0.000 description 2
- 230000006870 function Effects 0.000 description 2
- 206010000117 Abnormal behaviour Diseases 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 210000004209 hair Anatomy 0.000 description 1
- 230000009545 invasion Effects 0.000 description 1
- 239000000203 mixture Substances 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1425—Traffic logging, e.g. anomaly detection
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
Description
Claims (12)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710656409.2A CN107395608B (zh) | 2017-08-03 | 2017-08-03 | 一种网络访问异常检测方法及装置 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710656409.2A CN107395608B (zh) | 2017-08-03 | 2017-08-03 | 一种网络访问异常检测方法及装置 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN107395608A true CN107395608A (zh) | 2017-11-24 |
CN107395608B CN107395608B (zh) | 2020-09-11 |
Family
ID=60344803
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201710656409.2A Active CN107395608B (zh) | 2017-08-03 | 2017-08-03 | 一种网络访问异常检测方法及装置 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN107395608B (zh) |
Cited By (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109409902A (zh) * | 2018-09-04 | 2019-03-01 | 平安普惠企业管理有限公司 | 风险用户识别方法、装置、计算机设备及存储介质 |
CN110300123A (zh) * | 2019-07-26 | 2019-10-01 | 秒针信息技术有限公司 | 异常流量识别方法、装置、电子设备及存储介质 |
CN110417634A (zh) * | 2019-06-20 | 2019-11-05 | 平安普惠企业管理有限公司 | 基于信息安全的防刷票作弊方法及相关设备 |
CN111199417A (zh) * | 2019-11-29 | 2020-05-26 | 北京深演智能科技股份有限公司 | 虚假设备id的识别方法及装置 |
CN111722894A (zh) * | 2019-03-21 | 2020-09-29 | 成都鼎桥通信技术有限公司 | 应用处理方法、装置及电子设备 |
CN115563609A (zh) * | 2022-10-10 | 2023-01-03 | 深圳掌酷软件有限公司 | 用户类型的判定方法、装置、设备及存储介质 |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103001826A (zh) * | 2012-11-29 | 2013-03-27 | 北京奇虎科技有限公司 | 用于监测用户登录的设备和方法 |
CN103475637A (zh) * | 2013-04-24 | 2013-12-25 | 携程计算机技术(上海)有限公司 | 基于ip访问行为的网络访问控制方法及系统 |
CN106506451A (zh) * | 2016-09-30 | 2017-03-15 | 百度在线网络技术(北京)有限公司 | 恶意访问的处理方法及装置 |
CN106572057A (zh) * | 2015-10-10 | 2017-04-19 | 百度在线网络技术(北京)有限公司 | 检测用户登录异常信息的方法和装置 |
US20170150336A1 (en) * | 2013-03-15 | 2017-05-25 | T-Mobile Usa, Inc. | Local network alert system for mobile devices using an ims session and wi-fi access point |
-
2017
- 2017-08-03 CN CN201710656409.2A patent/CN107395608B/zh active Active
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103001826A (zh) * | 2012-11-29 | 2013-03-27 | 北京奇虎科技有限公司 | 用于监测用户登录的设备和方法 |
US20170150336A1 (en) * | 2013-03-15 | 2017-05-25 | T-Mobile Usa, Inc. | Local network alert system for mobile devices using an ims session and wi-fi access point |
CN103475637A (zh) * | 2013-04-24 | 2013-12-25 | 携程计算机技术(上海)有限公司 | 基于ip访问行为的网络访问控制方法及系统 |
CN106572057A (zh) * | 2015-10-10 | 2017-04-19 | 百度在线网络技术(北京)有限公司 | 检测用户登录异常信息的方法和装置 |
CN106506451A (zh) * | 2016-09-30 | 2017-03-15 | 百度在线网络技术(北京)有限公司 | 恶意访问的处理方法及装置 |
Cited By (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109409902A (zh) * | 2018-09-04 | 2019-03-01 | 平安普惠企业管理有限公司 | 风险用户识别方法、装置、计算机设备及存储介质 |
CN111722894A (zh) * | 2019-03-21 | 2020-09-29 | 成都鼎桥通信技术有限公司 | 应用处理方法、装置及电子设备 |
CN111722894B (zh) * | 2019-03-21 | 2023-04-18 | 成都鼎桥通信技术有限公司 | 应用处理方法、装置及电子设备 |
CN110417634A (zh) * | 2019-06-20 | 2019-11-05 | 平安普惠企业管理有限公司 | 基于信息安全的防刷票作弊方法及相关设备 |
CN110300123A (zh) * | 2019-07-26 | 2019-10-01 | 秒针信息技术有限公司 | 异常流量识别方法、装置、电子设备及存储介质 |
CN111199417A (zh) * | 2019-11-29 | 2020-05-26 | 北京深演智能科技股份有限公司 | 虚假设备id的识别方法及装置 |
CN115563609A (zh) * | 2022-10-10 | 2023-01-03 | 深圳掌酷软件有限公司 | 用户类型的判定方法、装置、设备及存储介质 |
CN115563609B (zh) * | 2022-10-10 | 2023-11-14 | 深圳掌酷软件有限公司 | 用户类型的判定方法、装置、设备及存储介质 |
Also Published As
Publication number | Publication date |
---|---|
CN107395608B (zh) | 2020-09-11 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN107395608A (zh) | 一种网络访问异常检测方法及装置 | |
US9462009B1 (en) | Detecting risky domains | |
CN109922075A (zh) | 网络安全知识图谱构建方法和装置、计算机设备 | |
CN112787992B (zh) | 一种敏感数据的检测与防护的方法、装置、设备和介质 | |
CN105471819B (zh) | 账号异常检测方法及装置 | |
US9639844B2 (en) | Method and apparatus of identifying a website user | |
US20190222601A1 (en) | Network anomaly detection and profiling | |
TWI743787B (zh) | 對抗攻擊的監測方法和裝置 | |
CN108989150A (zh) | 一种登录异常检测方法及装置 | |
WO2016123522A1 (en) | Anomaly detection using adaptive behavioral profiles | |
CN106295349A (zh) | 账号被盗的风险识别方法、识别装置及防控系统 | |
CN107241296A (zh) | 一种Webshell的检测方法及装置 | |
CN106549959B (zh) | 一种代理网际协议ip地址的识别方法及装置 | |
CN107579997A (zh) | 无线网络入侵检测系统 | |
WO2022104341A1 (en) | Techniques for clickstream tracking across browser tabs | |
CN107294953A (zh) | 攻击操作检测方法及装置 | |
CN104135467B (zh) | 识别恶意网站的方法及装置 | |
CN105306610B (zh) | 网络标识检测方法和装置 | |
CN104901962B (zh) | 一种网页攻击数据的检测方法及装置 | |
CN107426231A (zh) | 一种识别用户行为的方法及装置 | |
CN107465702A (zh) | 基于无线网络入侵的预警方法及装置 | |
CN107566401A (zh) | 虚拟化环境的防护方法及装置 | |
CN107135199B (zh) | 网页后门的检测方法和装置 | |
CN112671724A (zh) | 一种终端安全检测分析方法、装置、设备及可读存储介质 | |
Camiña et al. | Towards building a masquerade detection method based on user file system navigation |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
TA01 | Transfer of patent application right |
Effective date of registration: 20190402 Address after: 100015 15, 17 floor 1701-26, 3 building, 10 Jiuxianqiao Road, Chaoyang District, Beijing. Applicant after: BEIJING QIANXIN TECHNOLOGY Co.,Ltd. Applicant after: LEGENDSEC INFORMATION TECHNOLOGY (BEIJING) Inc. Address before: 100015 15, 17 floor 1701-26, 3 building, 10 Jiuxianqiao Road, Chaoyang District, Beijing. Applicant before: BEIJING QIANXIN TECHNOLOGY Co.,Ltd. |
|
TA01 | Transfer of patent application right | ||
CB02 | Change of applicant information |
Address after: 100088 Building 3 332, 102, 28 Xinjiekouwai Street, Xicheng District, Beijing Applicant after: QAX Technology Group Inc. Applicant after: LEGENDSEC INFORMATION TECHNOLOGY (BEIJING) Inc. Address before: 100015 Jiuxianqiao Chaoyang District Beijing Road No. 10, building 15, floor 17, layer 1701-26, 3 Applicant before: BEIJING QIANXIN TECHNOLOGY Co.,Ltd. Applicant before: LEGENDSEC INFORMATION TECHNOLOGY (BEIJING) Inc. |
|
CB02 | Change of applicant information | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
CP01 | Change in the name or title of a patent holder |
Address after: Room 332, 3 / F, Building 102, 28 xinjiekouwei street, Xicheng District, Beijing 100088 Patentee after: QAX Technology Group Inc. Patentee after: Qianxin Wangshen information technology (Beijing) Co.,Ltd. Address before: Room 332, 3 / F, Building 102, 28 xinjiekouwei street, Xicheng District, Beijing 100088 Patentee before: QAX Technology Group Inc. Patentee before: LEGENDSEC INFORMATION TECHNOLOGY (BEIJING) Inc. |
|
CP01 | Change in the name or title of a patent holder |