Attack detection method and system
作者: Wang Hongrui , Gao Yan , Wang Jing
DOI:
关键词:
摘要: The embodiment of the invention discloses an attack detection method and system. comprises following steps: establishing a plurality models related to HTTP request in advance, detecting each record after web access logs are decomposed by utilizing model respectively obtain parameter abnormal value aiming at record; calculating optimized weighted corresponding model, carrying out calculation final value, determining threshold; judging whether calculated log be detected is greater than determined if yes, as behavior. By applying invention, unknown attacks can actively discovered, so that rate improved; weighting multiple adopted for detecting, limitation single avoided, false-reporting under-reporting conditions reduced, false lowered.
lens.org 参考文章(3)
Aziz Mohaisen, Matthew Larson, Omar Alrawi, Systems and methods for behavior-based automated malware analysis and classification ,(2014)
Chen Feiyu, Xie Junyuan, Wu Jun, Wu Hesheng, Li Ning, Peng Yue, Multi-level anomaly detection method based on exponential smoothing and integrated learning model ,(2015)
Wang Yanliang, Tan Bingyuan, Jin Yaoqing, Physical vapor deposition (PVD) sprayed common-body plastic housing and manufacturing method thereof ,(2015)