Method and device for processing network threat suffered by network equipment

Method and device for processing network threat suffered by network equipment

The invention provides a method and a device for processing network threats suffered by network equipment. The method comprises the following steps: in response to a threat information message reported by acquisition equipment, searching a corresponding hash chain table according to a threat type an...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: JIANG LIN, ZHANG ZHIBING, HU BAIJI, WU RONGCHUN, WANG HAIXIANG, ZHU YAYUN, ZHOU LIANG, LIU XINDONG, ZHANG XIAOJUAN, CAO JINGYI, MIAO SIWEI, LIN ZIQING
Format: Patent
Sprache:chi ; eng
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The invention provides a method and a device for processing network threats suffered by network equipment. The method comprises the following steps: in response to a threat information message reported by acquisition equipment, searching a corresponding hash chain table according to a threat type and a hash value carried in the threat information message; in response to query success, determining whether threat information which is the same as the traffic source IP address carried by the threat information message exists in the queried hash chain table; in response to the determination result that the threat information message does not exist, determining a threat influence index according to the threat information message; adding threat information corresponding to the threat information message into a corresponding response chain according to the threat influence index; wherein the threat information messages in the response chain are sequentially processed by the processing equipment according to a sequenc