Network behavior anomaly detection method and system based on data mining and electronic equipment

Network behavior anomaly detection method and system based on data mining and electronic equipment

The invention relates to the field of data mining, and particularly discloses a network behavior anomaly detection method and system based on data mining and electronic equipment. The method comprises the following steps: firstly, acquiring current text data containing a current login IP (Internet P...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
1. Verfasser: LUO GUILIN
Format: Patent
Sprache:chi ; eng
Schlagworte:
CALCULATING
COMPUTING
COUNTING
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRIC DIGITAL DATA PROCESSING
ELECTRICITY
PHYSICS
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The invention relates to the field of data mining, and particularly discloses a network behavior anomaly detection method and system based on data mining and electronic equipment. The method comprises the following steps: firstly, acquiring current text data containing a current login IP (Internet Protocol) and current login equipment of a user, historical text data containing a historical login IP and historical login equipment of the user, and network equipment log data and server log data recorded by an anti-attack system, and then carrying out feature extraction and correlation analysis on the three data; and finally, obtaining a classification result through a classifier to judge whether to send out an abnormal behavior alarm of the current login user so as to further carry out identity verification on the current login user or limit the access permission of the current login user, thereby improving the network security and protecting the security of a network system and data. 本申请涉及数据挖掘领域,其具体地公开了一种基于数据挖掘