摘要 |
FIELD: electrical communications. ^ SUBSTANCE: proposed method that can be used in attack detection systems for on-line detection and blocking of unauthorized attacks in computer systems including Internet involves presetting of list of authorized connections as aggregate of reference connection identifiers, introduction of factor of urgency of reference authorized-connection identifiers and list of names of authorized processes, generation of list of unauthorized connections received in the course of checkup due to introduction of maximal admissible quantity of any of probable unauthorized connections, and their counting. ^ EFFECT: enhanced reliability of identifying unauthorized attacks in computer networks. ^ 1 cl, 8 dwg |