METHOD FOR DETECTING AN ATTACK IN A COMPUTER NETWORK

METHOD FOR DETECTING AN ATTACK IN A COMPUTER NETWORK

The invention relates to a method (600) for detecting an attack in a computer network (410, 510) having a plurality of computers, comprising the following steps: receiving (601) a plurality of warning messages (102) from the computers, wherein the warning messages are based on different types (111,...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: WESTPHALEN, MICHAEL, KLOTH, MATHIAS
Format: Patent
Sprache:eng ; fre
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The invention relates to a method (600) for detecting an attack in a computer network (410, 510) having a plurality of computers, comprising the following steps: receiving (601) a plurality of warning messages (102) from the computers, wherein the warning messages are based on different types (111, 112, 113, 114) of anomalies of the computer network; comparing (603) a quantity of the warning messages from the plurality of received warning messages (102) with a specified event threshold value, wherein the quantity of the warning messages is based on a same type (114) of an anomaly of the computer network; and outputting (605) an alarm signal (108) if the quantity of the warning messages that are based on the same type (114) of an anomaly of the computer network falls below the event threshold value.