Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Network abnormality detection method and system based on information entropy and sliding window

A network abnormality, sliding window technology, applied in transmission systems, digital transmission systems, data exchange networks, etc., can solve problems such as inability to obtain valid results, result changes, and dependencies

Inactive Publication Date: 2014-03-05
SHANGHAI DIANJI UNIV
View PDF3 Cites 21 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] However, the above-mentioned network anomaly detection methods all have the following disadvantages: the model of the first method is relatively simple, but it cannot detect more abnormal behavior types; for the second method, since the confidence interval needs to be artificially set through experience, it is necessary to A large number of failures and experience to generate a credible confidence interval; the third method has a complex model, and the results will vary greatly with different parameters; the fourth method is suitable for the case where the variable is a continuous parameter, Effective results cannot be obtained for the case of discrete value sampling; the result of the fifth method depends on the size of the time window setting

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Network abnormality detection method and system based on information entropy and sliding window
  • Network abnormality detection method and system based on information entropy and sliding window
  • Network abnormality detection method and system based on information entropy and sliding window

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0040] The implementation of the present invention is described below through specific examples and in conjunction with the accompanying drawings, and those skilled in the art can easily understand other advantages and effects of the present invention from the content disclosed in this specification. The present invention can also be implemented or applied through other different specific examples, and various modifications and changes can be made to the details in this specification based on different viewpoints and applications without departing from the spirit of the present invention.

[0041] Before introducing the present invention, an introduction is made for the data source and relevant theoretical basis selected and collected by the present invention:

[0042] (1) Selection and collection of data sources

[0043] Router Management Information Base (MIB) has 11 types of object data, including basic system information such as system or protocol-related information such ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses network abnormality detection method and system based on information entropy and a sliding window. The method comprises the following steps: defining the size of a time window and a sliding distance of the time window; progressively calculating the entropy and the entropy ratio of each time window orderly according to the sliding window; judging that network abnormality occurs when data mutation is generated in the time window or does not accord with the previous law if the entropy of the time window is smaller than a given threshold or the entropy ratio is greater than the given threshold. By adopting the method and the system, an information entropy model and a sliding window technology are led in, so as to find out the problem of network abnormality; the network abnormity can be quickly found out, the model is simplified to a certain extent, and the network abnormality can be quickly found out.

Description

technical field [0001] The invention relates to a network anomaly detection method and system, in particular to a network anomaly detection method and system based on information entropy and a sliding window. Background technique [0002] The current network anomaly detection methods are mainly based on statistical methods, which mainly include the following five types: 1) Threshold detection technology. For example, detecting the number of times a password is incorrectly used within a short period of time. 2) Mean and standard deviation modeling technique. By calculating the mean and standard deviation of the parameters, a confidence interval is set, and when the observed value exceeds the range of the confidence interval, it indicates that there may be anomalies. 3) Build a multivariate model. Its detection is based on the correlation analysis of two or more parameters to find anomalies. 4) Markov model. Each different type of audit event is regarded as a state variab...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L12/26
Inventor 赵雷苏庆刚
Owner SHANGHAI DIANJI UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com