CN113596019B - 高性能网络流量数据表示和提取方法和系统 - Google Patents
高性能网络流量数据表示和提取方法和系统 Download PDFInfo
- Publication number
- CN113596019B CN113596019B CN202110853114.0A CN202110853114A CN113596019B CN 113596019 B CN113596019 B CN 113596019B CN 202110853114 A CN202110853114 A CN 202110853114A CN 113596019 B CN113596019 B CN 113596019B
- Authority
- CN
- China
- Prior art keywords
- data
- connection
- record
- task
- data packet
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000605 extraction Methods 0.000 title claims abstract description 28
- 238000000034 method Methods 0.000 claims abstract description 38
- 238000001514 detection method Methods 0.000 claims abstract description 18
- 238000012544 monitoring process Methods 0.000 claims abstract description 11
- 238000009825 accumulation Methods 0.000 claims description 51
- 238000004590 computer program Methods 0.000 claims description 27
- 238000012545 processing Methods 0.000 claims description 12
- 230000008569 process Effects 0.000 description 9
- 238000010586 diagram Methods 0.000 description 8
- 230000006870 function Effects 0.000 description 7
- 238000005516 engineering process Methods 0.000 description 6
- 239000003550 marker Substances 0.000 description 6
- 230000004044 response Effects 0.000 description 6
- 238000010801 machine learning Methods 0.000 description 4
- 238000007689 inspection Methods 0.000 description 3
- 102100026278 Cysteine sulfinic acid decarboxylase Human genes 0.000 description 2
- 108010064775 protein C activator peptide Proteins 0.000 description 2
- 230000001960 triggered effect Effects 0.000 description 2
- 238000012217 deletion Methods 0.000 description 1
- 230000037430 deletion Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000003068 static effect Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1425—Traffic logging, e.g. anomaly detection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L47/00—Traffic control in data switching networks
- H04L47/10—Flow control; Congestion control
- H04L47/24—Traffic characterised by specific attributes, e.g. priority or QoS
- H04L47/2441—Traffic characterised by specific attributes, e.g. priority or QoS relying on flow classification, e.g. using integrated services [IntServ]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L47/00—Traffic control in data switching networks
- H04L47/10—Flow control; Congestion control
- H04L47/24—Traffic characterised by specific attributes, e.g. priority or QoS
- H04L47/2483—Traffic characterised by specific attributes, e.g. priority or QoS involving identification of individual flows
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L47/00—Traffic control in data switching networks
- H04L47/50—Queue scheduling
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
Description
Claims (10)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202110853114.0A CN113596019B (zh) | 2021-07-27 | 2021-07-27 | 高性能网络流量数据表示和提取方法和系统 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202110853114.0A CN113596019B (zh) | 2021-07-27 | 2021-07-27 | 高性能网络流量数据表示和提取方法和系统 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN113596019A CN113596019A (zh) | 2021-11-02 |
CN113596019B true CN113596019B (zh) | 2023-03-24 |
Family
ID=78250785
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202110853114.0A Active CN113596019B (zh) | 2021-07-27 | 2021-07-27 | 高性能网络流量数据表示和提取方法和系统 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN113596019B (zh) |
Families Citing this family (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN115549976B (zh) * | 2022-10-25 | 2023-10-27 | 腾云创威信息科技(威海)有限公司 | 一种控制转发分离的网络连接跟踪实现方法 |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2019142602A1 (ja) * | 2018-01-17 | 2019-07-25 | 日本電信電話株式会社 | 検知装置、その方法、及びプログラム |
CN110851334A (zh) * | 2019-11-19 | 2020-02-28 | 深圳市网心科技有限公司 | 流量统计方法、电子设备、系统及介质 |
US10728268B1 (en) * | 2018-04-10 | 2020-07-28 | Trend Micro Incorporated | Methods and apparatus for intrusion prevention using global and local feature extraction contexts |
CN112235160A (zh) * | 2020-10-14 | 2021-01-15 | 福建奇点时空数字科技有限公司 | 一种基于协议数据深层检测的流量识别方法 |
CN112953948A (zh) * | 2021-02-26 | 2021-06-11 | 南方电网科学研究院有限责任公司 | 一种实时网络横向蠕虫攻击流量检测方法及装置 |
-
2021
- 2021-07-27 CN CN202110853114.0A patent/CN113596019B/zh active Active
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2019142602A1 (ja) * | 2018-01-17 | 2019-07-25 | 日本電信電話株式会社 | 検知装置、その方法、及びプログラム |
US10728268B1 (en) * | 2018-04-10 | 2020-07-28 | Trend Micro Incorporated | Methods and apparatus for intrusion prevention using global and local feature extraction contexts |
CN110851334A (zh) * | 2019-11-19 | 2020-02-28 | 深圳市网心科技有限公司 | 流量统计方法、电子设备、系统及介质 |
CN112235160A (zh) * | 2020-10-14 | 2021-01-15 | 福建奇点时空数字科技有限公司 | 一种基于协议数据深层检测的流量识别方法 |
CN112953948A (zh) * | 2021-02-26 | 2021-06-11 | 南方电网科学研究院有限责任公司 | 一种实时网络横向蠕虫攻击流量检测方法及装置 |
Non-Patent Citations (2)
Title |
---|
An adaptive anomaly detection of WEB-based attacks;Wen Kai等;《2012 7th International Conference on Computer Science & Education (ICCSE)》;20120906;全文 * |
高性能网络流量采集和分析技术的实现;杜研哲;《中国优秀硕士学位论文》;20180315(第3期);全文 * |
Also Published As
Publication number | Publication date |
---|---|
CN113596019A (zh) | 2021-11-02 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11531482B2 (en) | Data deduplication method and apparatus | |
CN111198856B (zh) | 文件管理方法、装置、计算机设备和存储介质 | |
CN112528279B (zh) | 一种入侵检测模型的建立方法和装置 | |
CN113014623B (zh) | 埋点实时流数据处理方法、装置、计算机设备和存储介质 | |
WO2020181820A1 (zh) | 数据缓存方法、装置、计算机设备和存储介质 | |
CN113596019B (zh) | 高性能网络流量数据表示和提取方法和系统 | |
WO2021051613A1 (zh) | 一种记录用户行为链路的方法及装置 | |
CN111371757B (zh) | 恶意通信检测方法、装置、计算机设备和存储介质 | |
CN111797104A (zh) | 数据变更情况的获取方法、装置及电子设备 | |
CN115858861A (zh) | 视频浓缩方法、电子设备和计算机可读存储介质 | |
CN111240599A (zh) | 数据流存储方法及装置 | |
CN111182072A (zh) | 会话请求的应用识别方法、装置和计算机设备 | |
CN112287340B (zh) | 用于终端攻击的取证溯源方法、装置、计算机设备 | |
CN108540471B (zh) | 移动应用网络流量聚类方法、计算机可读存储介质和终端 | |
CN110022343B (zh) | 自适应事件聚合 | |
CN114465783B (zh) | 攻击点与业务报文的关联方法、关联系统及存储介质 | |
CN114154010A (zh) | 数据处理方法、装置、设备、存储介质 | |
US11513884B2 (en) | Information processing apparatus, control method, and program for flexibly managing event history | |
CN108667685B (zh) | 移动应用网络流量聚类装置 | |
CN111198900B (zh) | 工业控制网络的数据缓存方法、装置、终端设备及介质 | |
CN109542662B (zh) | 一种内存管理方法、装置、服务器及存储介质 | |
CN111368294B (zh) | 病毒文件的识别方法和装置、存储介质、电子装置 | |
CN110752996A (zh) | 一种报文转发方法及装置 | |
US20190324645A1 (en) | Identification of portions of data | |
CN113806698B (zh) | 应用资源控制方法、装置、计算机设备和存储介质 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
CP03 | Change of name, title or address |
Address after: 510000 No. 11 Kexiang Road, Science City, Luogang District, Guangzhou City, Guangdong Province Patentee after: CHINA SOUTHERN POWER GRID Co.,Ltd. Country or region after: China Patentee after: Southern Power Grid Digital Grid Research Institute Co.,Ltd. Address before: 510000 No. 11 Kexiang Road, Science City, Luogang District, Guangzhou City, Guangdong Province Patentee before: CHINA SOUTHERN POWER GRID Co.,Ltd. Country or region before: China Patentee before: Southern Power Grid Digital Grid Research Institute Co.,Ltd. |
|
CP03 | Change of name, title or address | ||
TR01 | Transfer of patent right |
Effective date of registration: 20240314 Address after: 510000 No. 11 Kexiang Road, Science City, Luogang District, Guangzhou City, Guangdong Province Patentee after: CHINA SOUTHERN POWER GRID Co.,Ltd. Country or region after: China Patentee after: China Southern Power Grid Digital Power Grid Group Information Communication Technology Co.,Ltd. Address before: 510000 No. 11 Kexiang Road, Science City, Luogang District, Guangzhou City, Guangdong Province Patentee before: CHINA SOUTHERN POWER GRID Co.,Ltd. Country or region before: China Patentee before: Southern Power Grid Digital Grid Research Institute Co.,Ltd. |
|
TR01 | Transfer of patent right |