首页> 外国专利> METHOD OF DETECTING ANOMALIES SUSPECTED OF ATTACK, BASED ON TIME SERIES STATISTICS

METHOD OF DETECTING ANOMALIES SUSPECTED OF ATTACK, BASED ON TIME SERIES STATISTICS

机译：基于时间序列统计的可疑攻击异常检测方法

页面导航

摘要
著录项
相似文献

摘要

Disclosed is a method of detecting anomalies suspected of an attack based on time series statistics according to the present invention. The method of detecting anomalies suspected of an attack according to the present invention includes the steps of: collecting log data and traffic data in real-time and extracting at least one piece of preset traffic feature information from the collected log data and traffic data; and training through a time series analysis-based normal traffic training model using the extracted traffic feature information, and detecting abnormal network traffic according to a result of the training.

机译：公开了根据本发明的基于时间序列统计信息来检测怀疑为攻击的异常的方法。根据本发明的检测可疑攻击异常的方法包括以下步骤：实时收集日志数据和交通数据，并从收集的日志数据和交通数据中提取至少一条预设交通特征信息;以及通过提取的流量特征信息，通过基于时间序列分析的正常流量训练模型进行训练，并根据训练结果检测网络流量异常。

著录项

公开/公告号US2016219067A1

专利类型
公开/公告日2016-07-28

原文格式PDF
申请/专利权人 KOREA INTERNET & SECURITY AGENCY;
展开▼

申请/专利号US201514639357
发明设计人 YOUNG SANG SHIN;DAE HOON YOO;HYEI SUN CHO;BYUNG IK KIM;TAE JIN LEE;NAK HYUN KIM;BO MIN CHOI;HONG KOO KANG;YOUNG IL HAN;TONG WOOK HWANG;
展开▼

申请日2015-03-05
分类号H04L29/06;
国家 US
入库时间 2022-08-21 14:35:18

相似文献

专利
外文文献
中文文献