Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Dynamic warehousing method for security events

A security event and dynamic technology, applied in the direction of computer security devices, relational databases, database models, etc., can solve problems such as application system instability, inability to meet customer production environments, and inability to support multiple relational databases at the same time, so as to improve the program Flexibility, reducing the effect of enumeration-style code development

Active Publication Date: 2015-08-12
FUZHOU BOKE WANGAN INFORMATION TECH CO LTD
View PDF3 Cites 10 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

For the warehousing process, the traditional security monitoring system will encounter the following two problems: first, the attack methods are changing dynamically, and the security event types that can be identified by security products must be further subdivided, and the change cycle is getting shorter and shorter, resulting in program The code is frequently updated and modified, resulting in the instability of the application system; secondly, the support for relational databases is relatively simple, and it cannot support multiple relational databases at the same time, so that it cannot meet the complex customer production environment. Even if it can be satisfied, more customized development is required

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Dynamic warehousing method for security events
  • Dynamic warehousing method for security events

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0020] The present invention will be further described below in conjunction with the accompanying drawings and embodiments.

[0021] like figure 1 As shown, this embodiment provides a method for dynamically storing security events, which specifically includes the following steps:

[0022] Step S1: adopt XML format file to define storage rules;

[0023] Step S2: loading the warehousing rules defined in step S1;

[0024] Step S3: Encapsulate the specified database operation function plug-in into a dynamic library DLL, and load the dynamic library DLL to realize a unified database operation interface and subsequent dynamic calls.

[0025] Step S4: Start the TCP network service, receive the collected security events, and define the collected security events as business objects;

[0026] Step S5: Convert the data of the business object received in step S4 into a common JSON format; wherein, the JSON business object has Key and Value values, is easy to use, and can be organically...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to a dynamic warehousing method for security events. The method comprises the following steps: S1, defining warehousing rules by using an XML (Extensive Markup Language) format file; S2, loading the warehousing rules defined in the step S1; S3, packaging designated database operation function plug-ins as a DLL (Dynamic Link Library), and loading the DLL; S4, starting TCP (Transmission Control Protocol) network service, receiving the collected security events, and defining the collected security events as service objects; S5, converting data of the service objects received in the step S4 into general JSON (JavaScript Object Notation) formats; S6, matching the service objects in the step S5 with the corresponding warehousing rules; S7, generating a corresponding SQL (Structured Query Language) sentence set according to the corresponding warehousing rules matched in the step S6; S8, calling the corresponding database operation function plug-ins to execute corresponding SQL sentences according to database types corresponding to the service objects. According to the dynamic warehousing method for the security events, various security events can be conveniently stored in various types of databases, and further trace analysis is facilitated for security technical analysts.

Description

technical field [0001] The invention relates to the technical field of network intrusion detection, in particular to a method for dynamically storing security events. Background technique [0002] Now that network intrusions are becoming more and more complex, the vulnerabilities in the network application layer have become the key attack targets of hackers. When using the vulnerabilities in the network application layer to attack, the attacker's data (attack script) is strange and strange, trying to bypass various security supervision systems It is also a cumbersome and important task to accurately and clearly classify these security events with unconventional content into various relational databases. For the warehousing process, the traditional security monitoring system will encounter the following two problems: first, the attack methods are changing dynamically, and the security event types that can be identified by security products must be further subdivided, and th...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/56G06F17/30
CPCG06F16/25G06F16/284G06F21/552
Inventor 王琦张木连刘坤朋张冬青
Owner FUZHOU BOKE WANGAN INFORMATION TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com