公开(公告)号：US07084760B2

公开(公告)日：2006-08-01

申请号：US10838711

申请日：2004-05-04

申请人： Kevin D. Himberger ,  Clark Debs Jeffries ,  David M. McMillen ,  John Allan Ziraldo

发明人： Kevin D. Himberger ,  Clark Debs Jeffries ,  David M. McMillen ,  John Allan Ziraldo

IPC分类号： G08B21/00

CPC分类号： H04L63/1425 ,  G06F21/552 ,  G06F21/577 ,  H04L63/1433

摘要： An intrusion event detection system, method, and program product with an enumeration of specific known benign intrusion events, and performing a vulnerability test on specific elements of the computer system for the particular known benign intrusion event. These vulnerability tests are performed at predetermined time intervals measured from a previous test or previous intrusion event of the known benign intrusion event. The predetermined time interval is increased based on various attributes, passage of time since the last intrusion event of either the specific known benign intrusion event or another known benign intrusion event, or even a an undetermined or harmful intrusion event, or the present detection of an intrusion even; or the vulnerability of a specific element in the computer system to a specific intrusion event.

摘要翻译： 入侵事件检测系统，方法和程序产品，具有枚举特定已知的良性入侵事件，以及针对特定已知的良性入侵事件对计算机系统的特定元件执行脆弱性测试。 这些漏洞测试是在从已知的良性入侵事件的先前测试或先前入侵事件测量的预定时间间隔执行的。 基于各种属性，特定已知的良性入侵事件或另一已知的良性入侵事件的最后入侵事件之后的时间的流逝，或者甚至是未确定的或有害的入侵事件，或者当前的检测 入侵甚至 或计算机系统中特定元素对特定入侵事件的脆弱性。