Log association method and device, electronic equipment and storage medium

The invention provides a log association method and device, electronic equipment and a storage medium. The method includes: searching a corresponding user behavior event set in a pre-established mapping relationship according to an attack mode of the attack, and reading sample user behavior events i...

Ausführliche Beschreibung

Gespeichert in:

Bibliographische Detailangaben
1. Verfasser:	SHAO PENGYU
Format:	Patent
Sprache:	chi ; eng
Schlagworte:	ELECTRIC COMMUNICATION TECHNIQUE ELECTRICITY TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:	Volltext bestellen
Tags:	Tag hinzufügen Keine Tags, Fügen Sie den ersten Tag hinzu!

container_end_page
container_issue
container_start_page
container_title
container_volume
creator	SHAO PENGYU
description	The invention provides a log association method and device, electronic equipment and a storage medium. The method includes: searching a corresponding user behavior event set in a pre-established mapping relationship according to an attack mode of the attack, and reading sample user behavior events in the set; and then matching the actually generated user behavior event with the sample user behavior event, and establishing an association relationship between the user behavior log which can be matched with the sample user behavior event based on the recorded user behavior event and the attack log which records the attack. Through the technical scheme of the invention, the user behavior event which may actually cause the attack this time can be screened out, and the log recording the user behavior event is associated with the log recording the attack this time, so that the accuracy of log analysis is improved while the labor cost of log analysis is reduced. 本申请提供一种日志关联方法及装置、电子设备、存储介质；该方法可以根据本次攻击的攻击模式在预先建立的映射关系中查
format	Patent
fullrecord	<record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_CN111092879A</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>CN111092879A</sourcerecordid><originalsourceid>FETCH-epo_espacenet_CN111092879A3</originalsourceid><addsrcrecordid>eNqNyzEKAjEQRuE0FqLeYewVjBa6pSyKiFjZL0Pyuw5sMnGT9fyKeACr13xvbM4XbYlzVidcRCMFlId64ujJ4yUOC0IHV3qN4gjPQVJALF-Qi_bc4vN4GcLUjO7cZcx-nZj58XCrT0skbZATO0SUpr5aa1fVeret9pt_zBsZMzUV</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>Log association method and device, electronic equipment and storage medium</title><source>esp@cenet</source><creator>SHAO PENGYU</creator><creatorcontrib>SHAO PENGYU</creatorcontrib><description>The invention provides a log association method and device, electronic equipment and a storage medium. The method includes: searching a corresponding user behavior event set in a pre-established mapping relationship according to an attack mode of the attack, and reading sample user behavior events in the set; and then matching the actually generated user behavior event with the sample user behavior event, and establishing an association relationship between the user behavior log which can be matched with the sample user behavior event based on the recorded user behavior event and the attack log which records the attack. Through the technical scheme of the invention, the user behavior event which may actually cause the attack this time can be screened out, and the log recording the user behavior event is associated with the log recording the attack this time, so that the accuracy of log analysis is improved while the labor cost of log analysis is reduced. 本申请提供一种日志关联方法及装置、电子设备、存储介质；该方法可以根据本次攻击的攻击模式在预先建立的映射关系中查</description><language>chi ; eng</language><subject>ELECTRIC COMMUNICATION TECHNIQUE ; ELECTRICITY ; TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><creationdate>2020</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20200501&DB=EPODOC&CC=CN&NR=111092879A$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,308,780,885,25564,76547</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20200501&DB=EPODOC&CC=CN&NR=111092879A$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>SHAO PENGYU</creatorcontrib><title>Log association method and device, electronic equipment and storage medium</title><description>The invention provides a log association method and device, electronic equipment and a storage medium. The method includes: searching a corresponding user behavior event set in a pre-established mapping relationship according to an attack mode of the attack, and reading sample user behavior events in the set; and then matching the actually generated user behavior event with the sample user behavior event, and establishing an association relationship between the user behavior log which can be matched with the sample user behavior event based on the recorded user behavior event and the attack log which records the attack. Through the technical scheme of the invention, the user behavior event which may actually cause the attack this time can be screened out, and the log recording the user behavior event is associated with the log recording the attack this time, so that the accuracy of log analysis is improved while the labor cost of log analysis is reduced. 本申请提供一种日志关联方法及装置、电子设备、存储介质；该方法可以根据本次攻击的攻击模式在预先建立的映射关系中查</description><subject>ELECTRIC COMMUNICATION TECHNIQUE</subject><subject>ELECTRICITY</subject><subject>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2020</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNqNyzEKAjEQRuE0FqLeYewVjBa6pSyKiFjZL0Pyuw5sMnGT9fyKeACr13xvbM4XbYlzVidcRCMFlId64ujJ4yUOC0IHV3qN4gjPQVJALF-Qi_bc4vN4GcLUjO7cZcx-nZj58XCrT0skbZATO0SUpr5aa1fVeret9pt_zBsZMzUV</recordid><startdate>20200501</startdate><enddate>20200501</enddate><creator>SHAO PENGYU</creator><scope>EVB</scope></search><sort><creationdate>20200501</creationdate><title>Log association method and device, electronic equipment and storage medium</title><author>SHAO PENGYU</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_CN111092879A3</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>chi ; eng</language><creationdate>2020</creationdate><topic>ELECTRIC COMMUNICATION TECHNIQUE</topic><topic>ELECTRICITY</topic><topic>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</topic><toplevel>online_resources</toplevel><creatorcontrib>SHAO PENGYU</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>SHAO PENGYU</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>Log association method and device, electronic equipment and storage medium</title><date>2020-05-01</date><risdate>2020</risdate><abstract>The invention provides a log association method and device, electronic equipment and a storage medium. The method includes: searching a corresponding user behavior event set in a pre-established mapping relationship according to an attack mode of the attack, and reading sample user behavior events in the set; and then matching the actually generated user behavior event with the sample user behavior event, and establishing an association relationship between the user behavior log which can be matched with the sample user behavior event based on the recorded user behavior event and the attack log which records the attack. Through the technical scheme of the invention, the user behavior event which may actually cause the attack this time can be screened out, and the log recording the user behavior event is associated with the log recording the attack this time, so that the accuracy of log analysis is improved while the labor cost of log analysis is reduced. 本申请提供一种日志关联方法及装置、电子设备、存储介质；该方法可以根据本次攻击的攻击模式在预先建立的映射关系中查</abstract><oa>free_for_read</oa></addata></record>
fulltext	fulltext_linktorsrc
identifier
ispartof
issn
language	chi ; eng
recordid	cdi_epo_espacenet_CN111092879A
source	esp@cenet
subjects	ELECTRIC COMMUNICATION TECHNIQUE ELECTRICITY TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
title	Log association method and device, electronic equipment and storage medium
url	https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2024-12-20T19%3A36%3A20IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=SHAO%20PENGYU&rft.date=2020-05-01&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3ECN111092879A%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true