Safety alarm generation method, device and system based on rule engine

Safety alarm generation method, device and system based on rule engine

The invention discloses a safety alarm generation method, device and system based on a rule engine. The method comprises the following steps: carrying out data acquisition on equipment and a system ina network; preprocessing the acquired data; and performing association analysis on the preprocessed...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: LIAO PENG, GUO MING, GE GUODONG, LI CHANG, SHEN WEI, SUN ZEJI, YU XIAOWEN, WU CHAO, CHENG KAI, CHEN LIANDONG, GAO PENG, SHEN PEIPEI, LIN XUEFENG, JIANG TIAN
Format: Patent
Sprache:chi ; eng
Schlagworte:
CALCULATING
COMPUTING
COUNTING
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRIC DIGITAL DATA PROCESSING
ELECTRICITY
PHYSICS
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The invention discloses a safety alarm generation method, device and system based on a rule engine. The method comprises the following steps: carrying out data acquisition on equipment and a system ina network; preprocessing the acquired data; and performing association analysis on the preprocessed data and a preset rule in a rule base, generating a security alarm in response to an alarm condition in the preset rule, and performing visual display on the generated security alarm. According to the invention, the whole security defense line can be monitored and managed, and early warning of multi-source security events is realized. 本发明公开了一种基于规则引擎的安全告警生成方法、装置及系统,所述方法包括以下步骤:对网络中的设备及系统进行数据采集;将采集到的数据进行预处理;将经过预处理后的数据与规则库内的预设规则进行关联分析,响应于所述预设规则中的告警条件,生成安全告警,并对所述生成的安全告警进行可视化展示。本发明可对整个安全防线进行监控和管理,实现对多源安全事件的预警。