摘要
针对目前互联网在加密访问可保障通信安全的情况下,绝大多数网络设备对网络攻击、恶意软件等加密流量却无能为力的问题,从使用加密流量的恶意用途分析、人工智能与恶意加密流量的对抗、加密流量安全检测技术剖析3方面进行探究,研制出首个针对加密流量的检测引擎,经过大量数据验证和实际网络测试,目前在加密流量安全检测的检出率可达到99.95%,误报率可控制在5%以下,从而进一步提升信息安全管控水平。
In view of the current internet in the case of encrypted access to ensure communication security,the vast majority of network equipment on network attacks,malware and other encryption traffic is powerless.From the malicious use of encrypted traffic analysis,artificial intelligence and malicious encrypted traffic flow of confrontation,encryption security detection technology,it analyzes three aspects to explore the development for encryption of traffic detection engine.Through a large number of data validation and actual network test,the current flow in the encryption security detection detection rate can reach 99.95%.The rate of false positives can be controlled under 5%,so as to further enhance the level of information security controls.
作者
叶水勇
YE Shuiyong(State Grid Huangshan Power Supply Company,Huangshan,Anhui 245000,China)
出处
《东北电力技术》
2019年第9期44-48,共5页
Northeast Electric Power Technology
关键词
加密流量
网络攻击
恶意软件
人工智能
安全检测
encrypted traffic
network attack
malicious software
artificial intelligence
security detection
