Security threat detection system, security threat detection method, and security threat detection program

摘要

To provide a security threat detection system, an attack learning processing device, an attack detection device, a security threat detection method, and a security device which can properly detect a security attack even without paying confidentiality of communication and even if payload encryption is performed Provide a threat detection program.SOLUTION: The security threat detection system learns a communication pattern of a security attack on a security attack basis on the basis of header information of a normal packet and a security attack packet, and generates attack value learning And an attack detection unit 20 for detecting a security threat by collating values of elements capturing characteristics of a security attack generated by the packet flowing in the network and the attack learning processing unit 10 with the processing unit 10.(FIG.