-
1.发明公开
公开(公告)号:EP2076993A4
公开(公告)日:2014-07-02
申请号:EP07868579
申请日:2007-10-25
申请人: ARCSIGHT INC
发明人: SINGLA ANURAG , SAURABH KUMAR , TIDWELL KENNY C
CPC分类号: G06F17/30333 , G06F17/30492 , G06F17/30551 , H04L29/12783 , H04L61/35 , H04L63/1408 , H04L63/20 , H04L67/142
摘要: A session table includes one or more records, where each record represents a session. Session record information is stored in various fields, such as key fields, value fields, and timestamp fields. Session information is described as keys and values in order to support query/lookup operations. A session table is associated with a filter, which describes a set of keys that can be used for records in that table. A session table is populated using data contained in security information/events. Rules are created to identify events related to session information, extract the session information, and use the session information to modify a session table. A session table is partitioned so that the number of records in each session table partition is decreased. A session table is processed periodically so that active sessions are moved to the current partition.
搜索结果
1 条记录 (耗时 0.006 秒)
筛选
AND
AND
过滤
NOT
NOT
扫码加群
