CN103544438A - 一种用于云安全***的用户感知病毒报告分析方法 - Google Patents
一种用于云安全***的用户感知病毒报告分析方法 Download PDFInfo
- Publication number
- CN103544438A CN103544438A CN201310452351.1A CN201310452351A CN103544438A CN 103544438 A CN103544438 A CN 103544438A CN 201310452351 A CN201310452351 A CN 201310452351A CN 103544438 A CN103544438 A CN 103544438A
- Authority
- CN
- China
- Prior art keywords
- node
- weights
- symptom
- user terminal
- virus
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 241000700605 Viruses Species 0.000 title claims abstract description 51
- 238000004458 analytical method Methods 0.000 title claims abstract description 20
- 230000008447 perception Effects 0.000 title abstract description 16
- 208000024891 symptom Diseases 0.000 claims abstract description 135
- 238000000034 method Methods 0.000 claims description 13
- 238000012545 processing Methods 0.000 claims description 11
- 230000000840 anti-viral effect Effects 0.000 claims description 2
- 230000006399 behavior Effects 0.000 claims description 2
- 230000004044 response Effects 0.000 claims description 2
- 230000009385 viral infection Effects 0.000 abstract description 9
- 238000005516 engineering process Methods 0.000 abstract description 3
- 230000003612 virological effect Effects 0.000 description 5
- 230000006378 damage Effects 0.000 description 4
- 230000002155 anti-virotic effect Effects 0.000 description 3
- 238000004364 calculation method Methods 0.000 description 3
- 208000015181 infectious disease Diseases 0.000 description 3
- 230000000630 rising effect Effects 0.000 description 3
- 230000003203 everyday effect Effects 0.000 description 2
- 230000006870 function Effects 0.000 description 2
- 238000010606 normalization Methods 0.000 description 2
- 206010000117 Abnormal behaviour Diseases 0.000 description 1
- 208000025174 PANDAS Diseases 0.000 description 1
- 208000021155 Paediatric autoimmune neuropsychiatric disorders associated with streptococcal infection Diseases 0.000 description 1
- 240000000220 Panda oleosa Species 0.000 description 1
- 235000016496 Panda oleosa Nutrition 0.000 description 1
- 206010033799 Paralysis Diseases 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000015556 catabolic process Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 230000007812 deficiency Effects 0.000 description 1
- 238000006731 degradation reaction Methods 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 230000001066 destructive effect Effects 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 238000000605 extraction Methods 0.000 description 1
- ZXQYGBMAQZUVMI-GCMPRSNUSA-N gamma-cyhalothrin Chemical compound CC1(C)[C@@H](\C=C(/Cl)C(F)(F)F)[C@H]1C(=O)O[C@H](C#N)C1=CC=CC(OC=2C=CC=CC=2)=C1 ZXQYGBMAQZUVMI-GCMPRSNUSA-N 0.000 description 1
- 238000010413 gardening Methods 0.000 description 1
- 238000012544 monitoring process Methods 0.000 description 1
- 230000000644 propagated effect Effects 0.000 description 1
- 238000005303 weighing Methods 0.000 description 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/55—Detecting local intrusion or implementing counter-measures
- G06F21/56—Computer malware detection or handling, e.g. anti-virus arrangements
- G06F21/562—Static detection
- G06F21/563—Static detection by source code analysis
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/145—Countermeasures against malicious traffic the attack involving the propagation of malware through the network, e.g. viruses, trojans or worms
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Software Systems (AREA)
- General Health & Medical Sciences (AREA)
- Virology (AREA)
- Health & Medical Sciences (AREA)
- Theoretical Computer Science (AREA)
- Computing Systems (AREA)
- Signal Processing (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Computer Networks & Wireless Communication (AREA)
- Medical Treatment And Welfare Office Work (AREA)
Abstract
Description
Claims (8)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201310452351.1A CN103544438B (zh) | 2013-09-27 | 2013-09-27 | 一种用于云安全***的用户感知病毒报告分析方法 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201310452351.1A CN103544438B (zh) | 2013-09-27 | 2013-09-27 | 一种用于云安全***的用户感知病毒报告分析方法 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN103544438A true CN103544438A (zh) | 2014-01-29 |
CN103544438B CN103544438B (zh) | 2016-03-02 |
Family
ID=49967878
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201310452351.1A Expired - Fee Related CN103544438B (zh) | 2013-09-27 | 2013-09-27 | 一种用于云安全***的用户感知病毒报告分析方法 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN103544438B (zh) |
Cited By (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105915556A (zh) * | 2016-06-29 | 2016-08-31 | 北京奇虎科技有限公司 | 一种终端的攻击面的确定方法及设备 |
CN106572122A (zh) * | 2016-12-09 | 2017-04-19 | 哈尔滨安天科技股份有限公司 | 基于网络行为特征关联分析的主机安全评估方法及*** |
CN107315953A (zh) * | 2016-04-26 | 2017-11-03 | 中芯国际集成电路制造(天津)有限公司 | 设备安全检测***及检测方法 |
CN108809950A (zh) * | 2018-05-21 | 2018-11-13 | 中国科学院信息工程研究所 | 一种基于云端影子***的无线路由器保护方法和*** |
CN109478220A (zh) * | 2016-07-26 | 2019-03-15 | 微软技术许可有限责任公司 | 对云驱动器文件夹上勒索软件攻击的补救 |
CN109472139A (zh) * | 2017-12-25 | 2019-03-15 | 北京安天网络安全技术有限公司 | 一种防御勒索病毒对主机文档二次加密的方法及*** |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1737722A (zh) * | 2005-08-03 | 2006-02-22 | 珠海金山软件股份有限公司 | 一种检测和防御计算机恶意程序的***和方法 |
CN102137115A (zh) * | 2011-04-22 | 2011-07-27 | 南京邮电大学 | 通信网恶意代码攻击效果评估方法 |
CN103077352A (zh) * | 2012-12-24 | 2013-05-01 | 重庆远衡科技发展有限公司 | 一种基于云平台的程序行为分析的主动防御方法 |
-
2013
- 2013-09-27 CN CN201310452351.1A patent/CN103544438B/zh not_active Expired - Fee Related
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1737722A (zh) * | 2005-08-03 | 2006-02-22 | 珠海金山软件股份有限公司 | 一种检测和防御计算机恶意程序的***和方法 |
CN102137115A (zh) * | 2011-04-22 | 2011-07-27 | 南京邮电大学 | 通信网恶意代码攻击效果评估方法 |
CN103077352A (zh) * | 2012-12-24 | 2013-05-01 | 重庆远衡科技发展有限公司 | 一种基于云平台的程序行为分析的主动防御方法 |
Cited By (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107315953A (zh) * | 2016-04-26 | 2017-11-03 | 中芯国际集成电路制造(天津)有限公司 | 设备安全检测***及检测方法 |
CN107315953B (zh) * | 2016-04-26 | 2020-06-02 | 中芯国际集成电路制造(天津)有限公司 | 设备安全检测***及检测方法 |
CN105915556A (zh) * | 2016-06-29 | 2016-08-31 | 北京奇虎科技有限公司 | 一种终端的攻击面的确定方法及设备 |
CN105915556B (zh) * | 2016-06-29 | 2019-02-12 | 北京奇虎科技有限公司 | 一种终端的攻击面的确定方法及设备 |
CN109478220A (zh) * | 2016-07-26 | 2019-03-15 | 微软技术许可有限责任公司 | 对云驱动器文件夹上勒索软件攻击的补救 |
CN109478220B (zh) * | 2016-07-26 | 2022-03-29 | 微软技术许可有限责任公司 | 对云驱动器文件夹上勒索软件攻击的补救 |
CN106572122A (zh) * | 2016-12-09 | 2017-04-19 | 哈尔滨安天科技股份有限公司 | 基于网络行为特征关联分析的主机安全评估方法及*** |
CN109472139A (zh) * | 2017-12-25 | 2019-03-15 | 北京安天网络安全技术有限公司 | 一种防御勒索病毒对主机文档二次加密的方法及*** |
CN109472139B (zh) * | 2017-12-25 | 2022-04-19 | 北京安天网络安全技术有限公司 | 一种防御勒索病毒对主机文档二次加密的方法及*** |
CN108809950A (zh) * | 2018-05-21 | 2018-11-13 | 中国科学院信息工程研究所 | 一种基于云端影子***的无线路由器保护方法和*** |
CN108809950B (zh) * | 2018-05-21 | 2020-10-16 | 中国科学院信息工程研究所 | 一种基于云端影子***的无线路由器保护方法和*** |
Also Published As
Publication number | Publication date |
---|---|
CN103544438B (zh) | 2016-03-02 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US12047396B2 (en) | System and method for monitoring security attack chains | |
Aljawarneh et al. | Anomaly-based intrusion detection system through feature selection analysis and building hybrid efficient model | |
Protić | Review of KDD Cup ‘99, NSL-KDD and Kyoto 2006+ datasets | |
CN103544438B (zh) | 一种用于云安全***的用户感知病毒报告分析方法 | |
CN114584405B (zh) | 一种电力终端安全防护方法及*** | |
TWI711938B (zh) | 用於使用無監督式機器學習和優先權演算法的高速威脅性情報管理的系統及方法 | |
Hoque et al. | An implementation of intrusion detection system using genetic algorithm | |
EP3461103B1 (en) | Ip reputation | |
US11487880B2 (en) | Inferring security incidents from observational data | |
WO2017152742A1 (zh) | 一种网络安全设备的风险评估方法和装置 | |
US11057411B2 (en) | Log analysis device, log analysis method, and log analysis program | |
Xiao et al. | From patching delays to infection symptoms: Using risk profiles for an early discovery of vulnerabilities exploited in the wild | |
Sathya et al. | Discriminant analysis based feature selection in kdd intrusion dataset | |
CN107547490B (zh) | 一种扫描器识别方法、装置及*** | |
CN106850647B (zh) | 基于dns请求周期的恶意域名检测算法 | |
JP2010250502A (ja) | 異常操作検出装置、異常操作検出方法、および異常操作検出プログラム | |
Krishnaveni et al. | Ensemble approach for network threat detection and classification on cloud computing | |
US10419449B1 (en) | Aggregating network sessions into meta-sessions for ranking and classification | |
Danane et al. | Intrusion detection system using fuzzy genetic algorithm | |
CN104363240A (zh) | 基于信息流行为合法性检测的未知威胁的综合检测方法 | |
GB2575755A (en) | Assessment program, assessment method, and information processing device | |
US10367835B1 (en) | Methods and apparatus for detecting suspicious network activity by new devices | |
CN115632884B (zh) | 基于事件分析的网络安全态势感知方法与*** | |
Gautam et al. | Anomaly detection system using entropy based technique | |
CN106897619B (zh) | 移动终端恶意软件感知方法及装置 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
EE01 | Entry into force of recordation of patent licensing contract |
Application publication date: 20140129 Assignee: Jiangsu Nanyou IOT Technology Park Ltd. Assignor: NANJING University OF POSTS AND TELECOMMUNICATIONS Contract record no.: 2016320000214 Denomination of invention: A kind of for Yunan County's system-wide user awareness virus report analysis method Granted publication date: 20160302 License type: Common License Record date: 20161117 |
|
LICC | Enforcement, change and cancellation of record of contracts on the licence for exploitation of a patent or utility model | ||
EC01 | Cancellation of recordation of patent licensing contract |
Assignee: Jiangsu Nanyou IOT Technology Park Ltd. Assignor: NANJING University OF POSTS AND TELECOMMUNICATIONS Contract record no.: 2016320000214 Date of cancellation: 20180116 |
|
EC01 | Cancellation of recordation of patent licensing contract | ||
EE01 | Entry into force of recordation of patent licensing contract |
Application publication date: 20140129 Assignee: NANJING NANYOU INSTITUTE OF INFORMATION TECHNOVATION Co.,Ltd. Assignor: NANJING University OF POSTS AND TELECOMMUNICATIONS Contract record no.: 2018320000285 Denomination of invention: User perception virus report analysis method for cloud security system Granted publication date: 20160302 License type: Common License Record date: 20181101 |
|
EE01 | Entry into force of recordation of patent licensing contract | ||
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20160302 Termination date: 20210927 |
|
CF01 | Termination of patent right due to non-payment of annual fee |