Network intrusion detection method and system
The invention provides a network intrusion detection method and system. The method comprises the following steps of acquiring access request records of a preset number of source IPs to a target IP; counting a target access request with an empty request source page identifier in the access request re...
Saved in:
| Main Authors | , , , , |
|---|---|
| Format | Patent |
| Language | Chinese English |
| Published |
12.10.2018
|
| Subjects | |
| Online Access | Get full text |
Cover
Loading…
| Summary: | The invention provides a network intrusion detection method and system. The method comprises the following steps of acquiring access request records of a preset number of source IPs to a target IP; counting a target access request with an empty request source page identifier in the access request records; respectively setting weight values for a plurality of characteristics recorded by the targetaccess request, and writing the target access request record into a preset state table based on the set weight value; and matching the written target access request record in the preset state table, and taking the access request record in a matching result as a network intrusion record. According to the technical scheme provided by the invention, the success rate of network intrusion detection canbe improved.
本申请提供种网络入侵检测方法及系统,其中,所述方法包括:获取预设数量的源IP到目标IP的访问请求记录;统计所述访问请求记录中请求来源页面标识为空的目标访问请求记录;为所述目标访问请求记录的多个特征分别设置权重值,并基于设置的权重值,将所述目标访问请求记录写入预设状态表;在所述预设状态表中将写入的目标访问请求记录进行匹配,并将匹配结果中的访问请求记录作为网络入侵记录。本申请提供的技术方案,能够提高网络入侵检测的成功率。 |
|---|---|
| Bibliography: | Application Number: CN201810485563 |