首页> 外国专利> METHOD AND APPARATUS FOR ADAPTIVE UNKNOWN ATTACK DETECTION SYSTEM USING SWARM INTELLIGENCE AND MACHINE LEARNING ALGORITHMS

METHOD AND APPARATUS FOR ADAPTIVE UNKNOWN ATTACK DETECTION SYSTEM USING SWARM INTELLIGENCE AND MACHINE LEARNING ALGORITHMS

机译：基于群体智能和机器学习算法的自适应未知攻击检测系统的方法和装置

页面导航

摘要
著录项
相似文献

摘要

An attack detection method according to an embodiment of the present invention includes the steps of: collecting sample network traffic; performing clustering on the sample network traffic included in predetermined similarity based on swarm intelligence and machine learning algorithms in a clustering engine as the sample network traffic is collected; learning clustering results according to the clustering of the sample network traffic in a detection engine, monitoring real network traffic and detecting an attack with the learned detection engine in real time; and sampling the traffic wrongly detected in the adaptive detection engine according to the attack detection, labeling the sampled traffic into an attack or normal traffic, and transmitting feedback to the clustering engine. Accordingly, the present invention can effectively detect an unknown attack.;COPYRIGHT KIPO 2017

机译：根据本发明实施例的攻击检测方法包括以下步骤：收集样本网络流量;以及当收集样本网络流量时，基于集群引擎中的群体智能和机器学习算法，对包含在预定相似度中的样本网络流量进行聚类;根据检测引擎中样本网络流量的聚类学习聚类结果，监控实际网络流量，并利用学习到的检测引擎实时检测攻击;根据所述攻击检测，对在自适应检测引擎中误检测出的流量进行采样，将采样后的流量标记为攻击或正常流量，并将反馈发送给所述集群引擎。因此，本发明可以有效地检测未知攻击。; COPYRIGHT KIPO 2017

著录项

公开/公告号KR20170106540A

专利类型
公开/公告日2017-09-21

原文格式PDF
申请/专利权人 KOREA ADVANCED INSTITUTE OF SCIENCE AND TECHNOLOGY;
展开▼

申请/专利号KR20160028846
发明设计人 KIM KWANG JOKR;KIM KYUNG MINKR;HONG JIN AKR;KIM HAK JUKR;CHOI RAK YONGKR;
展开▼

申请日2016-03-10
分类号H04L29/06;G06F15/18;G06F21/50;G06N99/00;
国家 KR
入库时间 2022-08-21 13:26:37

相似文献

专利
外文文献
中文文献