Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Attack detection method and device and website application level intrusion protection system WAF

An intrusion prevention system and attack detection technology, applied in transmission systems, electrical components, etc., can solve problems such as network security risks, achieve the effects of reducing security risks, continuous attack detection, and improving scalability

Active Publication Date: 2021-08-17
NEW H3C SECURITY TECH CO LTD
View PDF10 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] The purpose of the embodiment of the present application is to provide an attack detection method, device, and website application-level intrusion prevention system WAF, so as to improve the scalability of WAF, and solve the problem of potential safety hazards in the network caused by the interruption of the attack detection.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Attack detection method and device and website application level intrusion protection system WAF
  • Attack detection method and device and website application level intrusion protection system WAF
  • Attack detection method and device and website application level intrusion protection system WAF

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0110] The following will clearly and completely describe the technical solutions in the embodiments of the application with reference to the drawings in the embodiments of the application. Apparently, the described embodiments are only some of the embodiments of the application, not all of them. Based on the embodiments in this application, all other embodiments obtained by persons of ordinary skill in the art based on this application belong to the scope of protection of this application.

[0111] For ease of understanding, the words appearing in the embodiments of the present application are explained below.

[0112] Nginx: A lightweight web server. The characteristics of Nginx are: it occupies less memory and has strong concurrency capability. The concurrency capability of Nginx performs well among the same type of web servers, and it has good Hypertext Transport Protocol (Hypertext Transport Protocol, HTTP) processing capability and reverse proxy capability.

[0113] Cu...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The embodiment of the invention provides an attack detection method and device and a website application level intrusion protection system WAF, the WAF comprises a proxy server, a connector and a matching engine, and the method comprises the steps that the proxy server receives a to-be-detected message and transmits the to-be-detected message to the connector; the connector transmits the message to be detected to the matching engine through a registration interface of the matching engine; and the matching engine performs attack detection on the to-be-detected message and determines a detection result of the to-be-detected message. By applying the technical scheme provided by the embodiment of the invention, the expansibility of the WAF can be improved, and the problem of potential safety hazards in a network caused by flow interruption in attack detection is solved.

Description

technical field [0001] The present application relates to the technical field of network security protection, in particular to an attack detection method and device and a website application-level intrusion prevention system WAF. Background technique [0002] With the development of Internet technology, website (Web) applications are getting more and more attention from business systems. At the same time, web servers with powerful computing power, processing performance and high value have gradually become the main attack targets. [0003] In order to maintain the security of the web server, the currently commonly used website application-level intrusion prevention system (WebApplication Firewall, WAF) is the Nginx-based ModSecurity protection system. In this WAF, the Nginx proxy server is connected to the ModSecurity detection engine, which has a built-in core rule set. The Nginx proxy server forwards the received packet to the ModSecurity detection engine. The ModSecurit...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06
CPCH04L63/1416H04L69/22
Inventor 徐胜
Owner NEW H3C SECURITY TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products