System and method for parsing, summarizing and reporting log data
作者: Thomas Hunt Schabo Grabowski , Jason Michael DeStefano
DOI:
关键词:
摘要: A system and method is disclosed which enables network administrators the like to quickly analyze data produced by log-producing devices such as firewalls routers. Unlike systems of prior art, herein automatically parses summarizes log before inserting it into one or more databases. This greatly reduces volume stored in database permits queries be run reports generated while many types attempted breaches security are still progress. Database maintenance may also accomplished delete archive old data.
lens.org 参考文章(45)
Şükran Asarcıklı, Firewall monitoring using intrusion detection systems İzmir Institute of Technology. ,(2005)
Richard N. Bromberg, Method and apparatus for logging database performance characteristics ,(1998)
Scott Matsumoto, Robert Adams, Diane Downie, Transactional monitoring system and method ,(2001)
William B. Bowman, System and method for detecting fraudulent network usage patterns using real-time network monitoring ,(1995)
Donald R. Horne, Management of log archival and reporting for data network security systems ,(2000)
Timothy David McCreery, Mahboud Zabetian, Apparatus and method of analyzing internet activity ,(1996)
Kenneth Nilsen, David Garcia, Method and apparatus for handling data storage requests in a distributed data base environment ,(1995)
Andrew Ginter, Kegan Kawano, Brad McMillan, Tom Hutchinson, Andy G. Mah, Adam Muegge, Rui Manuel Martins Lopes, Erik P. Hope, Brett Jensen, Method and computer program product for monitoring an industrial network ,(2004)
Andrew P. Sherman, Scott E. McCargar, Method for deallocating a log in database systems ,(1996)
Bryan Douglas Williams, Timothy P. Farley, Philip Charles Brass, Derek John Mezack, George C. Young, John M. Hammer, Method and System for Managing Computer Security Information ,(2001)