http://rdf.ncbi.nlm.nih.gov/pubchem/patent/CN-113746832-B
Outgoing Links
| Predicate | Object |
|---|---|
| classificationCPCInventive | http://rdf.ncbi.nlm.nih.gov/pubchem/patentcpc/H04L63-1425 http://rdf.ncbi.nlm.nih.gov/pubchem/patentcpc/H04L63-1441 |
| classificationIPCInventive | http://rdf.ncbi.nlm.nih.gov/pubchem/patentipc/H04L9-40 |
| filingDate | 2021-09-02-04:00^^<http://www.w3.org/2001/XMLSchema#date> |
| grantDate | 2022-04-29-04:00^^<http://www.w3.org/2001/XMLSchema#date> |
| publicationDate | 2022-04-29-04:00^^<http://www.w3.org/2001/XMLSchema#date> |
| publicationNumber | CN-113746832-B |
| titleOfInvention | Multi-method mixed distributed APT malicious flow detection defense system and method |
| abstract | The invention belongs to the technical field of network security, and discloses a multi-method mixed distributed APT malicious flow detection and defense system and a method, wherein the system comprises the following steps: the network equipment layer performs traffic bypass and equipment management and control, and sends bypass traffic to the detection and defense layer for detection; the detection and protection layer performs flow detection and instruction execution; the analysis and control layer performs summary analysis on detection logs and issues instructions; and the display and management layer performs data display and user interaction. The invention can carry out omnibearing and multi-angle accurate detection on malicious traffic in the network, thereby identifying potential APT attack. Meanwhile, by using a distributed architecture, the intrusion condition of the whole protected network can be threatened and modeled accurately and comprehensively. Meanwhile, a Cyber Kill Chain theoretical model is used, the correlation between alarms in the network under long-time and wide space span is fully excavated, potential APT attack actions in the network are identified, and corresponding alarms are given. |
| priorityDate | 2021-09-02-04:00^^<http://www.w3.org/2001/XMLSchema#date> |
| type | http://data.epo.org/linked-data/def/patent/Publication |
Incoming Links
| Predicate | Subject |
|---|---|
| isDiscussedBy | http://rdf.ncbi.nlm.nih.gov/pubchem/substance/SID415828001 http://rdf.ncbi.nlm.nih.gov/pubchem/compound/CID130640 |
Total number of triples: 13.