Network attack detection method and device
US10645105B2 · kind B2 · utility
Assignees
Inventor
Key dates
| Filing date | Aug 17, 2016 |
| Grant date | May 5, 2020 |
| Priority date | — |
| Expiry date | Dec 31, 2036 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L67/02
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Provided are a network attack detection method and device. The method comprises: carrying out word segmentation to a character string to be detected and obtain words; determining the tuples corresponding to the to-be-detected character string; determining whether, in an attack model database, there are model tuples corresponding to the tuples, and whether there are model words corresponding to the first one of these words, the model tuples, the occurrence probability of each model tuple; if there are, acquiring the corresponding model tuples and the occurrence probability of the corresponding model words, and determining, according to the occurrence probability of the corresponding model tuples and the occurrence probability of the corresponding model words, the attack probability corresponding to the to-be-detected character string; and if the attack probability is larger than or equal to a preset probability threshold, determining that the to-be-detected character string is a character string having an attack behavior.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.