Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Testing machine family confidence method, device and equipment and storage medium

A testing machine and family technology, applied in the field of network security, to achieve the effect of high matching efficiency and rapid identification

Pending Publication Date: 2022-05-13
三六零数字安全科技集团有限公司
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] The main purpose of the present invention is to provide a test machine family confidence method, device, equipment and storage medium, aiming to solve the technical problem of how to quickly identify whether the collected suspected test machine samples are advanced threat actors

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Testing machine family confidence method, device and equipment and storage medium
  • Testing machine family confidence method, device and equipment and storage medium
  • Testing machine family confidence method, device and equipment and storage medium

Examples

Experimental program
Comparison scheme
Effect test

no. 1 example

[0101] Based on the above-mentioned first embodiment, before the step S10, the confidence method of the testing machine family in this embodiment further includes:

[0102] Step S01: Obtain the test machine sample set and threat intelligence set corresponding to each advanced threat actor family in the preset advanced threat actor family set;

[0103] It should be noted that the preset set of advanced threat actor families is the set of advanced threat actor families composed of currently known advanced threat actor families, and the test machine sample set is the data collected from the terminal of the end user identified as the test machine A collection of samples. IOC (Indicator of compromise) intelligence means a threat indicator. It usually refers to threat objects or feature information with high confidence in detection or forensics. A threat intelligence set is a collection of IOC intelligence.

[0104] Step S02: Construct a sample matching rule set according to the tes...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention belongs to the technical field of network security, and discloses a method, a device and equipment for testing family confidence of a machine, and a storage medium. The method comprises the steps of obtaining sample information of a suspected test machine sample; matching the sample information with each matching rule in a family matching rule set corresponding to the target advanced threat behavior body family to obtain a rule matching result; and determining family confidence scores of the suspected test machine sample and the target advanced threat behavior body family according to a rule matching result. As the family matching rule set is preset, real-time setting is not needed, the matching efficiency is high, the family confidence score can be quickly determined, and then the possibility that the suspected test machine sample belongs to the target advanced threat behavior body family can be judged through the family confidence score; whether the suspected test machine sample is the advanced threat behavior body or not can be judged according to the possibility that the suspected test machine sample belongs to the target advanced threat behavior body family, so that whether the suspected test machine sample is the advanced threat behavior body or not can be quickly identified.

Description

technical field [0001] The invention relates to the technical field of network security, in particular to a testing machine family trust method, device, equipment and storage medium. Background technique [0002] In the process of testing and confronting advanced threat (Advanced Persistent Threat, APT) actors and security terminal products, advanced threat actors install the terminal product in a virtual environment in most cases, and test their malicious tools against security terminals Product capabilities to evaluate the feasibility of the next attack launch. Security terminal products need to quickly identify advanced threat actors and predict their next attack trend. During the confrontation with advanced threat actors, advanced threat actors will continue to expose their own habitual characteristics. Therefore, how to quickly identify collected suspected test machine samples Whether it is an advanced threat actor is the core issue in confronting advanced threat actor...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/40H04L61/255H04L61/4511G06K9/62G06F16/955
CPCH04L63/0236H04L63/1466H04L61/255G06F16/9566G06F18/22G06F18/24
Inventor 边亮陈泽宇
Owner 三六零数字安全科技集团有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com