Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Alarm sorting method and device based on big data environment

A sorting method and big data technology, applied in the field of network security, can solve problems such as network security incidents, no solution proposed, flooding, etc., to achieve the effect of improving processing efficiency

Active Publication Date: 2020-02-28
HANGZHOU ANHENG INFORMATION TECH CO LTD
View PDF6 Cites 6 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

If the alarm information of unimportant assets is huge, and a lot of alarm information is generated every day, it is very likely that the alarm information of important assets will be flooded. Once the information is flooded, analysts cannot find and deal with it well, resulting in network security incidents.
[0004] For the above problems, no effective solution has been proposed

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Alarm sorting method and device based on big data environment
  • Alarm sorting method and device based on big data environment
  • Alarm sorting method and device based on big data environment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0030] According to an embodiment of the present invention, an embodiment of an alarm sorting method based on a big data environment is provided. It should be noted that the steps shown in the flow chart of the accompanying drawings can be implemented in a computer system such as a set of computer-executable instructions and, although a logical order is shown in the flowcharts, in some cases the steps shown or described may be performed in an order different from that shown or described herein.

[0031] figure 1is a flowchart of a method for sorting alarms based on a big data environment according to an embodiment of the present invention, such as figure 1 As shown, the method includes the following steps:

[0032] Step S102, acquiring alarm information of the system to be detected, wherein the alarm information is information generated when the system to be detected is attacked;

[0033] Step S104, based on the analytic hierarchy process, determine the weight value of the a...

Embodiment 2

[0087] The present invention also provides an embodiment of an alarm sorting device based on a big data environment, the device is used to implement the alarm sorting method based on a big data environment provided by the above content of the embodiment of the present invention, the following is provided by the embodiment of the present invention The specific introduction of the alarm sorting device based on the big data environment.

[0088] Such as image 3 As shown, the above-mentioned alarm sorting device based on a big data environment includes: an acquisition unit 10 , a determination unit 20 , a calculation unit 30 and a sorting unit 40 .

[0089] The acquiring unit is configured to acquire alarm information of the system to be detected, wherein the alarm information is information generated when the system to be detected is attacked;

[0090] The determining unit is configured to determine the weight value of the alarm type corresponding to the alarm information based...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides an alarm sorting method and device based on a big data environment, and relates to the technical field of network security, and the method comprises the steps: obtaining alarm information of a to-be-detected system, the alarm information being information generated when the to-be-detected system is attacked; determining a weight value of an alarm type corresponding to the alarm information based on an analytic hierarchy process; an alarm score of the alarm information is calculated based on a Hacker new algorithm and the weight value of the alarm type corresponding to the alarm information, and the alarm score is used for representing the importance of the alarm information; and sorting the alarm scores to obtain a score sequence of the alarm information, thereby solving the technical problem of relatively low processing efficiency of important alarm information in the prior art.

Description

technical field [0001] The invention relates to the technical field of network security, in particular to an alarm sorting method and device based on a big data environment. Background technique [0002] In the situational awareness platform or general system, when sorting the latest alarm information, the technicians first sort all the alarm information in reverse chronological order, and then sort according to the alarm level from high to low. [0003] Since the situational awareness platform is a big data analysis platform, there are many sources for collecting alarm information, a wide range of channels, and a large amount of alarm information. Based on these reasons, if the alarm levels are simply arranged in reverse chronological order and the alarm levels are arranged from high to low, the problem caused by this is that key alarms cannot be reflected. Here, critical alarms refer to alarms generated on important assets, or alarms generated on important assets and are ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L12/24H04L29/06
CPCH04L63/30H04L41/065
Inventor 范颜婷范渊黄进
Owner HANGZHOU ANHENG INFORMATION TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com