Invention Grant
- Patent Title: Method and system for displaying network security incidents
- Patent Title (中): 显示网络安全事故的方法和系统
-
Application No.: US10661224Application Date: 2003-09-12
-
Publication No.: US07644365B2Publication Date: 2010-01-05
- Inventor: Partha Bhattacharya , Imin Lee , Aji Joseph , Eli Stevens , Diwakar Naramreddy
- Applicant: Partha Bhattacharya , Imin Lee , Aji Joseph , Eli Stevens , Diwakar Naramreddy
- Applicant Address: US CA San Jose
- Assignee: Cisco Technology, Inc.
- Current Assignee: Cisco Technology, Inc.
- Current Assignee Address: US CA San Jose
- Agency: Hickman Palermo Truong & Becker LLP
- Main IPC: G06F3/00
- IPC: G06F3/00
Abstract:
A network security monitor system groups a plurality of security events into network sessions, correlates the network sessions according to a set of predefined network security event correlation rules and generates a security incident for the network sessions that satisfy one of the network security event correlation rules. The system then presents the information of the network sessions and security incidents to a user of the system in an intuitive form. The user is able to not only learn the details of a possible network attack, but also creates new security event correlation rules intuitively, including drop rules for dropping a particular type of events.
Public/Granted literature
- US20050060562A1 Method and system for displaying network security incidents Public/Granted day:2005-03-17
Information query
