首页>
外国专利>
Automatic detection of network threats based on modeling sequential behavior in network traffic
Automatic detection of network threats based on modeling sequential behavior in network traffic
展开▼
机译:基于对网络流量中的顺序行为进行建模的网络威胁自动检测
展开▼
页面导航
摘要
著录项
相似文献
摘要
A computer-implemented data processing method comprises: executing a recurrent neural network (RNN) comprising nodes each implemented as a Long Short-Term Memory (LSTM) cell and comprising links between nodes that represent outputs of LSTM cells and inputs to LSTM cells, wherein each LSTM cell implements an input layer, hidden layer and output layer of the RNN; receiving network traffic data associated with networked computers; extracting feature data representing features of the network traffic data and providing the feature data to the RNN; classifying individual Uniform Resource Locators (URLs) as malicious or legitimate using LSTM cells of the input layer, wherein inputs to the LSTM cells are individual characters of the URLs, and wherein the LSTM cells generate feature representation; based on the feature representation, generating signals to a firewall device specifying either admitting or denying the URLs.
展开▼