CN112583813A - Network security early warning system - Google Patents
Network security early warning system Download PDFInfo
- Publication number
- CN112583813A CN112583813A CN202011429590.1A CN202011429590A CN112583813A CN 112583813 A CN112583813 A CN 112583813A CN 202011429590 A CN202011429590 A CN 202011429590A CN 112583813 A CN112583813 A CN 112583813A
- Authority
- CN
- China
- Prior art keywords
- unit
- module
- virus
- network
- early warning
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 241000700605 Viruses Species 0.000 claims abstract description 60
- 238000005457 optimization Methods 0.000 claims abstract description 12
- 238000012805 post-processing Methods 0.000 claims abstract description 12
- 230000010365 information processing Effects 0.000 claims abstract description 10
- 238000012544 monitoring process Methods 0.000 claims abstract description 8
- 238000000605 extraction Methods 0.000 claims abstract description 6
- 230000002155 anti-virotic effect Effects 0.000 abstract description 3
- 238000000034 method Methods 0.000 abstract description 3
- 230000006378 damage Effects 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 239000000284 extract Substances 0.000 description 2
- 238000012545 processing Methods 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000011160 research Methods 0.000 description 1
- 230000000630 rising effect Effects 0.000 description 1
- 230000000087 stabilizing effect Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1416—Event detection, e.g. attack signature detection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/145—Countermeasures against malicious traffic the attack involving the propagation of malware through the network, e.g. viruses, trojans or worms
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Health & Medical Sciences (AREA)
- General Health & Medical Sciences (AREA)
- Virology (AREA)
- Alarm Systems (AREA)
Abstract
The invention discloses a network safety early warning system which comprises a network risk identification module, a comparison module, a virus killing module, an information processing module, a post processing module and an alarm module, wherein the network risk identification module comprises a real-time monitoring unit, the comparison module comprises a virus storage unit, the virus killing module comprises an automatic scanning unit and a network disconnection self-rescue unit, the information processing module comprises an extraction module, the post processing module comprises an event storage unit, a weak analysis unit and a reconstruction optimization unit, and the alarm module comprises an information notification unit. According to the invention, the automatic scanning unit of the antivirus module is started to automatically scan the virus, the virus is killed in the scanning process, and when the virus killing difficulty is higher, the network disconnection self-rescue unit is disconnected, so that self-rescue is realized, network safety protection can be rapidly carried out, known virus types are increased, the protection on a network environment is enhanced, and the next network virus attack is effectively prevented.
Description
Technical Field
The invention relates to the field of safety early warning systems, in particular to a network safety early warning system.
Background
The development of contemporary information technology has driven the generation, collection, transmission, sharing and analysis of data, making scientific and engineering research increasingly become data-intensive. The informatization degree of the human society is higher and higher, the number of internet users is increasing in geometric progression, groups with a certain network technology level in the users are rapidly forming and rising, and network traffic is increased day by day, network law violation and emergencies are layered endlessly, so that great harm is caused to national security, social stability and people's interests. The phenomenon of abusing the internet is more and more, and the damage and the loss to the internet are surprised. Therefore, the dependence degree of the whole society on network information is higher and higher, the internet security problem is more and more prominent, and the importance of network security is higher and more. Therefore, the system monitors and warns the network security, and plays an important role in timely processing network violation and emergency, stabilizing the national society and guaranteeing the benefits of people.
Disclosure of Invention
The invention aims to solve the defects in the prior art and provides a network security early warning system.
In order to achieve the purpose, the invention adopts the following technical scheme:
the utility model provides a network security early warning system, includes network risk identification module, comparison module, virus killing module, information processing module, post processing module and alarm module, including the real-time supervision unit in the network risk identification module, including virus storage unit in the comparison module, including the automatic scanning unit in the virus killing module and the unit of saving oneself of disconnected net, including extracting the module in the information processing module, including event memory cell, weak analysis unit and reconsitution optimization unit in the post processing module, including information notification unit in the alarm module, the comparison module is connected with network risk identification module, virus killing module respectively, virus killing module is connected with post processing module, alarm module respectively, event memory cell respectively with extract unit, virus storage unit connection.
Preferably, the real-time monitoring unit detects the network environment in real time.
Preferably, the event storage unit records and stores events which are attacked by the virus each time.
Preferably, the extracting unit is configured to extract the virus type in the event record that is attacked by the virus each time by the event storage unit.
Preferably, the information notification unit includes an information transmitter therein, and the information transmitter is connected to the mobile terminal through WiFi.
Preferably, the weakness analysis unit is connected to the reconstruction optimization unit.
Preferably, the weak analysis unit analyzes weak points in the network environment, and transmits the analyzed weak points to the reconstruction optimization unit to perform reconstruction optimization on the network environment.
The invention has the beneficial effects that:
the network risk monitoring system monitors a network environment in real time through the real-time monitoring unit in the network risk identification module, when a virus attacks, the virus storage unit in the comparison module is compared with the attacked virus, then the automatic scanning unit of the antivirus module is started to automatically scan the virus, the virus is killed in the scanning process, and when the virus killing difficulty is high, the network breaking and self-rescue unit breaks the network, so that self-rescue is realized, and network safety protection can be quickly carried out.
2, the invention informs the information of virus attack to the mobile terminal through the information transmitter by the information informing unit in the alarm module to remind the operator to operate.
3, the invention records and stores the virus attack event through the post-processing module, extracts the virus type in the event storage unit through the extraction module in the information processing module, and stores the virus type in the virus storage unit in the comparison module, increases the known virus type, enhances the protection of the network environment, and effectively prevents the next network virus from attacking.
Drawings
Fig. 1 is a schematic structural diagram of a network security early warning system according to the present invention.
Fig. 2 is a schematic structural diagram of a component of a network security early warning system according to the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments.
Referring to fig. 1-2, a network security early warning system comprises a network risk identification module, a comparison module, a virus killing module, an information processing module, a post processing module and an alarm module, wherein the network risk identification module comprises a real-time monitoring unit, the comparison module comprises a virus storage unit, the virus killing module comprises an automatic scanning unit and a network disconnection self-rescue unit, the information processing module comprises an extraction module, the post processing module comprises an event storage unit, a weakness analysis unit and a reconstruction optimization unit, the alarm module comprises an information notification unit, the comparison module is respectively connected with the network risk identification module and the virus killing module, the virus killing module is respectively connected with the post processing module and the alarm module, the event storage unit is respectively connected with the extraction unit and the virus storage unit, and the real-time monitoring unit detects a network environment in real time, the event storage unit records and stores the event which is attacked by the virus every time, the extraction unit is used for extracting the virus type in the event record which is attacked by the virus every time, the information notification unit comprises an information transmitter, the information transmitter is connected with the mobile terminal through WiFi, the weak analysis unit is connected with the reconstruction optimization unit, the weak analysis unit analyzes weak places in the network environment, and the weak places are transmitted to the reconstruction optimization unit to reconstruct and optimize the network environment after being analyzed.
The working principle is as follows: the invention monitors the network environment in real time through the real-time monitoring unit in the network risk identification module, when a virus attacks, the virus storage unit in the comparison module is compared with the attacked virus, then the automatic scanning unit of the antivirus module is started to automatically scan the virus, the virus is killed in the scanning process, when the virus killing difficulty is higher, the network disconnection self-rescue unit is disconnected to realize self-rescue, then the information informing unit in the alarm module informs the information of the virus attack to the mobile terminal through the information transmitter to remind the operator to operate and recover, meanwhile, the later-stage processing module records and stores the current virus attack event, then the virus types in the event storage unit are extracted through the extracting module in the information processing module and are stored in the virus storage unit in the comparison module, the known virus types are added, the protection to the network environment is enhanced, and the next network virus attack is effectively prevented.
In the description of the present invention, it is to be understood that the terms "center", "longitudinal", "lateral", "length", "width", "thickness", "upper", "lower", "front", "rear", "left", "right", "vertical", "horizontal", "top", "bottom", "inner", "outer", "clockwise", "counterclockwise", and the like, indicate orientations and positional relationships based on those shown in the drawings, and are used only for convenience of description and simplicity of description, and do not indicate or imply that the equipment or element being referred to must have a particular orientation, be constructed and operated in a particular orientation, and thus, should not be considered as limiting the present invention.
Furthermore, the terms "first", "second" and "first" are used for descriptive purposes only and are not to be construed as indicating or implying relative importance or implicitly indicating the number of technical features indicated. Thus, a feature defined as "first" or "second" may explicitly or implicitly include one or more of that feature. In the description of the present invention, "a plurality" means two or more unless specifically defined otherwise.
The above description is only for the preferred embodiment of the present invention, but the scope of the present invention is not limited thereto, and any person skilled in the art should be considered to be within the technical scope of the present invention, and the technical solutions and the inventive concepts thereof according to the present invention should be equivalent or changed within the scope of the present invention.
Claims (7)
1. The utility model provides a network security early warning system, its characterized in that, includes network risk identification module, contrast module, virus killing module, information processing module, post processing module and alarm module, including the real-time supervision unit in the network risk identification module, include virus storage unit in the contrast module, including automatic scanning unit and disconnected net unit of saving oneself in the virus killing module, including extracting the module in the information processing module, including event storage unit, weak analysis unit and reconsitution optimization unit in the post processing module, including information notification unit in the alarm module, contrast module is connected with network risk identification module, virus killing module respectively, virus killing module is connected with post processing module, alarm module respectively, event storage unit is connected with extraction unit, virus storage unit respectively.
2. The system of claim 1, wherein the real-time monitoring unit detects the network environment in real time.
3. The network security early warning system of claim 1, wherein the event storage unit records and stores events which are attacked by viruses each time.
4. The network security early warning system according to claim 1, wherein the extracting unit is configured to extract the virus type in the event record of each time the event storage unit is attacked by the virus.
5. The network security early warning system according to claim 1, wherein the information notification unit comprises an information transmitter, and the information transmitter is connected with the mobile terminal through WiFi.
6. The network security early warning system of claim 1, wherein the weakness analysis unit is connected with the reconstruction optimization unit.
7. The network security early warning system according to claim 1, wherein the weak analysis unit analyzes weak points in the network environment, and transmits the analyzed weak points to the reconstruction optimization unit to perform reconstruction optimization on the network environment.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202011429590.1A CN112583813A (en) | 2020-12-09 | 2020-12-09 | Network security early warning system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202011429590.1A CN112583813A (en) | 2020-12-09 | 2020-12-09 | Network security early warning system |
Publications (1)
Publication Number | Publication Date |
---|---|
CN112583813A true CN112583813A (en) | 2021-03-30 |
Family
ID=75130370
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202011429590.1A Pending CN112583813A (en) | 2020-12-09 | 2020-12-09 | Network security early warning system |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN112583813A (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2023231589A1 (en) * | 2022-06-01 | 2023-12-07 | 云南电网有限责任公司保山供电局 | Research and development video access defense mode management and control system |
Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20060031938A1 (en) * | 2002-10-22 | 2006-02-09 | Unho Choi | Integrated emergency response system in information infrastructure and operating method therefor |
CN101154257A (en) * | 2007-08-14 | 2008-04-02 | 电子科技大学 | Dynamic mend performing method based on characteristics of loopholes |
CN103745154A (en) * | 2013-12-27 | 2014-04-23 | 柳州职业技术学院 | Intrusion detection system and detection method with self-learning capability |
CN104283889A (en) * | 2014-10-20 | 2015-01-14 | 国网重庆市电力公司电力科学研究院 | Electric power system interior APT attack detection and pre-warning system based on network architecture |
CN109005168A (en) * | 2018-07-25 | 2018-12-14 | 安徽三实信息技术服务有限公司 | A kind of network security warning system and method for early warning |
CN111371750A (en) * | 2020-02-21 | 2020-07-03 | 浙江德迅网络安全技术有限公司 | Intrusion prevention system and intrusion prevention method based on computer network |
-
2020
- 2020-12-09 CN CN202011429590.1A patent/CN112583813A/en active Pending
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20060031938A1 (en) * | 2002-10-22 | 2006-02-09 | Unho Choi | Integrated emergency response system in information infrastructure and operating method therefor |
CN101154257A (en) * | 2007-08-14 | 2008-04-02 | 电子科技大学 | Dynamic mend performing method based on characteristics of loopholes |
CN103745154A (en) * | 2013-12-27 | 2014-04-23 | 柳州职业技术学院 | Intrusion detection system and detection method with self-learning capability |
CN104283889A (en) * | 2014-10-20 | 2015-01-14 | 国网重庆市电力公司电力科学研究院 | Electric power system interior APT attack detection and pre-warning system based on network architecture |
CN109005168A (en) * | 2018-07-25 | 2018-12-14 | 安徽三实信息技术服务有限公司 | A kind of network security warning system and method for early warning |
CN111371750A (en) * | 2020-02-21 | 2020-07-03 | 浙江德迅网络安全技术有限公司 | Intrusion prevention system and intrusion prevention method based on computer network |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2023231589A1 (en) * | 2022-06-01 | 2023-12-07 | 云南电网有限责任公司保山供电局 | Research and development video access defense mode management and control system |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN107911653B (en) | Intelligent video monitoring module, system, method and storage medium for residence | |
CN108777703A (en) | A kind of abnormal behaviour processing method and system based on block chain | |
CN202771441U (en) | Face recognition monitoring system | |
CN102447707B (en) | DDoS (Distributed Denial of Service) detection and response method based on mapping request | |
CN107180504A (en) | A kind of the image recognition early warning system and method for the anti-big machinery destruction of transmission line of electricity | |
CN207337680U (en) | A kind of hand-held traffic administration instrument | |
CN103310576A (en) | Intelligent networked alarm system for community security and protection | |
CN112788008A (en) | Network security dynamic defense system and method based on big data | |
CN112583813A (en) | Network security early warning system | |
CN113794819A (en) | Intelligent management method, system, device and medium for epidemic prevention place | |
CN113923669A (en) | Anti-fraud early warning method, device, equipment and medium for multi-source cross-platform fusion | |
CN102496256B (en) | Wireless positioning alarm system and method for prison | |
CN202134077U (en) | Intelligent inference based machine room early stage fire hazard class early warning system | |
CN206039795U (en) | Self service bank's safe alarm system | |
CN203405721U (en) | Building intelligent monitoring system | |
CN204929052U (en) | Internet security protection control intelligent management system | |
CN110149303A (en) | A kind of network safety pre-warning method and early warning system of Party school | |
CN107493258A (en) | A kind of intruding detection system based on network security | |
CN204515966U (en) | A kind of warning system based on Internet of Things and image recognition | |
CN107277070A (en) | A kind of computer network instrument system of defense and intrusion prevention method | |
CN203025900U (en) | Face recognition alarm apparatus | |
CN212933554U (en) | Workshop management and control system | |
CN108550247A (en) | A kind of community security system | |
CN115223078A (en) | Power behavior recognition early warning method, system and equipment based on high-level monitoring | |
CN203482326U (en) | Intelligent video monitoring and alarming device |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20210330 |
|
RJ01 | Rejection of invention patent application after publication |