Multi-source security threat detection method and device

Embodiments of the invention provide a multi-source security threat detection method and apparatus. The method comprises the steps of obtaining log data of different types of threat detection devices; performing threat intelligence analysis and/or situation awareness analysis on the log data of the...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: CHEN JIAKE, LIU HAIXIA, CHEN CANCAN, CHENG YEXIA, LIANG YEYU
Format: Patent
Sprache:chi ; eng
Schlagworte:
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Embodiments of the invention provide a multi-source security threat detection method and apparatus. The method comprises the steps of obtaining log data of different types of threat detection devices; performing threat intelligence analysis and/or situation awareness analysis on the log data of the different types of threat detection devices; and according to an analysis result of the threat intelligence analysis and/or a prediction result of the situation awareness analysis, sending the patch file of the system and/or the application program to corresponding safety protection equipment. 本申请实施例提供一种多源安全威胁检测方法和装置,该方法包括:获取不同类型的威胁检测设备的日志数据;将所述不同类型的威胁检测设备的日志数据进行威胁情报分析和/或态势感知分析;根据所述威胁情报分析的分析结果和/或态势感知分析的预测结果,将系统和/或应用程序的补丁文件发送给对应的安全防护设备。