CN112468516A - Security defense method and device, electronic equipment and storage medium - Google Patents
Security defense method and device, electronic equipment and storage medium Download PDFInfo
- Publication number
- CN112468516A CN112468516A CN202011496213.XA CN202011496213A CN112468516A CN 112468516 A CN112468516 A CN 112468516A CN 202011496213 A CN202011496213 A CN 202011496213A CN 112468516 A CN112468516 A CN 112468516A
- Authority
- CN
- China
- Prior art keywords
- communication data
- defense
- security
- detection result
- power system
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 230000007123 defense Effects 0.000 title claims abstract description 146
- 238000000034 method Methods 0.000 title claims abstract description 53
- 238000004891 communication Methods 0.000 claims abstract description 149
- 238000001514 detection method Methods 0.000 claims abstract description 78
- 230000002159 abnormal effect Effects 0.000 claims description 42
- 238000010801 machine learning Methods 0.000 claims description 7
- 230000000903 blocking effect Effects 0.000 claims description 6
- 230000002547 anomalous effect Effects 0.000 claims 2
- 238000002955 isolation Methods 0.000 claims 1
- 238000010586 diagram Methods 0.000 description 6
- 238000005516 engineering process Methods 0.000 description 4
- 230000008569 process Effects 0.000 description 4
- 230000008878 coupling Effects 0.000 description 3
- 238000010168 coupling process Methods 0.000 description 3
- 238000005859 coupling reaction Methods 0.000 description 3
- 230000008901 benefit Effects 0.000 description 2
- 230000006870 function Effects 0.000 description 2
- 238000012544 monitoring process Methods 0.000 description 2
- 238000010276 construction Methods 0.000 description 1
- 238000013527 convolutional neural network Methods 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 238000011160 research Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
- H04L63/0236—Filtering by address, protocol, port number or service, e.g. IP-address or URL
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
- H04L63/0263—Rule management
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1416—Event detection, e.g. attack signature detection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1425—Traffic logging, e.g. anomaly detection
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Business, Economics & Management (AREA)
- General Business, Economics & Management (AREA)
- Alarm Systems (AREA)
Abstract
Description
Claims (10)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202011496213.XA CN112468516A (en) | 2020-12-17 | 2020-12-17 | Security defense method and device, electronic equipment and storage medium |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202011496213.XA CN112468516A (en) | 2020-12-17 | 2020-12-17 | Security defense method and device, electronic equipment and storage medium |
Publications (1)
Publication Number | Publication Date |
---|---|
CN112468516A true CN112468516A (en) | 2021-03-09 |
Family
ID=74803732
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202011496213.XA Pending CN112468516A (en) | 2020-12-17 | 2020-12-17 | Security defense method and device, electronic equipment and storage medium |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN112468516A (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN113434498A (en) * | 2021-05-14 | 2021-09-24 | 国网河北省电力有限公司衡水供电分公司 | Method and device for monitoring data abnormity of database of power system and electronic equipment |
Citations (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20110197278A1 (en) * | 2007-01-23 | 2011-08-11 | Alcatel Lucent | Containment mechanism for potentially contaminated end systems |
CN104298923A (en) * | 2014-09-28 | 2015-01-21 | 北京奇虎科技有限公司 | Loophole type recognition method and device |
CN106790023A (en) * | 2016-12-14 | 2017-05-31 | 平安科技(深圳)有限公司 | Network security Alliance Defense method and apparatus |
CN108206830A (en) * | 2017-12-30 | 2018-06-26 | 平安科技(深圳)有限公司 | Vulnerability scanning method, apparatus, computer equipment and storage medium |
CN110113332A (en) * | 2019-04-30 | 2019-08-09 | 北京奇安信科技有限公司 | A kind of detection industry control agreement whether there is the method and device of exception |
CN110675048A (en) * | 2019-09-19 | 2020-01-10 | 国网福建省电力有限公司 | Power data quality detection method and system |
CN111064730A (en) * | 2019-12-23 | 2020-04-24 | 深信服科技股份有限公司 | Network security detection method, device, equipment and storage medium |
CN111526121A (en) * | 2020-03-24 | 2020-08-11 | 杭州迪普科技股份有限公司 | Intrusion prevention method and device, electronic equipment and computer readable medium |
CN111756697A (en) * | 2020-05-27 | 2020-10-09 | 杭州数梦工场科技有限公司 | API (application program interface) security detection method and device, storage medium and computer equipment |
CN111752936A (en) * | 2020-06-30 | 2020-10-09 | 中国科学院西北生态环境资源研究院 | Data detection management method, device, server and readable storage medium |
US20200372154A1 (en) * | 2019-05-21 | 2020-11-26 | Jaroona Chain Ou | Blockchain security |
-
2020
- 2020-12-17 CN CN202011496213.XA patent/CN112468516A/en active Pending
Patent Citations (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20110197278A1 (en) * | 2007-01-23 | 2011-08-11 | Alcatel Lucent | Containment mechanism for potentially contaminated end systems |
CN104298923A (en) * | 2014-09-28 | 2015-01-21 | 北京奇虎科技有限公司 | Loophole type recognition method and device |
CN106790023A (en) * | 2016-12-14 | 2017-05-31 | 平安科技(深圳)有限公司 | Network security Alliance Defense method and apparatus |
CN108206830A (en) * | 2017-12-30 | 2018-06-26 | 平安科技(深圳)有限公司 | Vulnerability scanning method, apparatus, computer equipment and storage medium |
CN110113332A (en) * | 2019-04-30 | 2019-08-09 | 北京奇安信科技有限公司 | A kind of detection industry control agreement whether there is the method and device of exception |
US20200372154A1 (en) * | 2019-05-21 | 2020-11-26 | Jaroona Chain Ou | Blockchain security |
CN110675048A (en) * | 2019-09-19 | 2020-01-10 | 国网福建省电力有限公司 | Power data quality detection method and system |
CN111064730A (en) * | 2019-12-23 | 2020-04-24 | 深信服科技股份有限公司 | Network security detection method, device, equipment and storage medium |
CN111526121A (en) * | 2020-03-24 | 2020-08-11 | 杭州迪普科技股份有限公司 | Intrusion prevention method and device, electronic equipment and computer readable medium |
CN111756697A (en) * | 2020-05-27 | 2020-10-09 | 杭州数梦工场科技有限公司 | API (application program interface) security detection method and device, storage medium and computer equipment |
CN111752936A (en) * | 2020-06-30 | 2020-10-09 | 中国科学院西北生态环境资源研究院 | Data detection management method, device, server and readable storage medium |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN113434498A (en) * | 2021-05-14 | 2021-09-24 | 国网河北省电力有限公司衡水供电分公司 | Method and device for monitoring data abnormity of database of power system and electronic equipment |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10122748B1 (en) | Network protection system and threat correlation engine | |
CN112073389B (en) | Cloud host security situation awareness system, method, device and storage medium | |
US9948667B2 (en) | Signature rule processing method, server, and intrusion prevention system | |
US20170185785A1 (en) | System, method and apparatus for detecting vulnerabilities in electronic devices | |
EP2828767A1 (en) | System and method for crowdsourcing of mobile application reputations | |
WO2016208159A1 (en) | Information processing device, information processing system, information processing method, and storage medium | |
CN103975331B (en) | It is incorporated with the safe data center's infrastructure management system for being managed infrastructure equipment | |
CN111786986B (en) | Numerical control system network intrusion prevention system and method | |
CN112468516A (en) | Security defense method and device, electronic equipment and storage medium | |
US20240031407A1 (en) | Honeypot Network Management Based on Probabilistic Detection of Malicious Port Activity | |
US20230018096A1 (en) | Analysis apparatus, analysis method, and non-transitory computer readable medium storing analysis program | |
CN108322460B (en) | Business system flow monitoring system | |
CN114257404B (en) | Abnormal external connection statistical alarm method, device, computer equipment and storage medium | |
CN115834345A (en) | Alarm data processing method, device, equipment and medium | |
US11677582B2 (en) | Detecting anomalies on a controller area network bus | |
CN114697052B (en) | Network protection method and device | |
CN113986843A (en) | Data risk early warning processing method and device and electronic equipment | |
CN113127855A (en) | Safety protection system and method | |
CN111242770B (en) | Risk equipment identification method and device, electronic equipment and readable storage medium | |
CN116938606B (en) | Network traffic detection method and device | |
US20230275908A1 (en) | Thumbprinting security incidents via graph embeddings | |
US20230403294A1 (en) | Cyber security restoration engine | |
CN117879977B (en) | Network security protection method and device, electronic equipment and storage medium | |
CN114338237B (en) | Terminal behavior monitoring method, device, equipment, medium and computer program product | |
CN114500024B (en) | Network asset management method, device, equipment and storage medium |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
TA01 | Transfer of patent application right | ||
TA01 | Transfer of patent application right |
Effective date of registration: 20210915 Address after: 102209 18 Riverside Avenue, Changping District science and Technology City, Beijing Applicant after: GLOBAL ENERGY INTERCONNECTION RESEARCH INSTITUTE Co.,Ltd. Applicant after: STATE GRID HENAN ELECTRIC POWER Co. Applicant after: STATE GRID CORPORATION OF CHINA Applicant after: STATE GRID HENAN ELECTRIC POWER CORPORATION ELECTRIC POWER SCIENCE Research Institute Address before: 102209 18 Riverside Avenue, Changping District science and Technology City, Beijing Applicant before: GLOBAL ENERGY INTERCONNECTION RESEARCH INSTITUTE Co.,Ltd. Applicant before: STATE GRID HENAN ELECTRIC POWER Co. Applicant before: STATE GRID CORPORATION OF CHINA |
|
RJ01 | Rejection of invention patent application after publication | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20210309 |