-
公开(公告)号:US20050071684A1
公开(公告)日:2005-03-31
申请号:US10985749
申请日:2004-11-09
申请人: Stephen Sorkin , Michael Lyle , Robert Ross , James Maricondo
发明人: Stephen Sorkin , Michael Lyle , Robert Ross , James Maricondo
CPC分类号: H04L63/1408 , H04L63/0227 , H04L63/1425 , H04L63/1441 , H04L63/1491 , Y10S707/99933 , Y10S707/99939
摘要: A system and method are disclosed for providing security for a computer network. Content sets are generated for a computer associated with the network. It is determined whether a user should be routed to the generated content sets. If it is determined that the user should be routed to the generated content sets, a generated content set is selected and the user is so routed. Various actions and events may be recorded in a logfile, and the logfile is analyzed using regular expressions.
-
公开(公告)号:US06907533B2
公开(公告)日:2005-06-14
申请号:US09841700
申请日:2001-04-23
CPC分类号: H04L63/1408 , H04L63/0227 , H04L63/1425 , H04L63/1441 , H04L63/1491 , Y10S707/99933 , Y10S707/99939
摘要: A system and method are disclosed for providing security for a computer network. Content sets are generated for a computer associated with the network. It is determined whether a user should be routed to the generated content sets. If it is determined that the user should be routed to the generated content sets, a generated content set is selected and the user is so routed. Various actions and events may be recorded in a logfile, and the logfile is analyzed using regular expressions.
摘要翻译: 公开了一种用于为计算机网络提供安全性的系统和方法。 为与网络相关联的计算机生成内容集。 确定用户是否应被路由到生成的内容集。 如果确定用户应被路由到所生成的内容集合,则选择生成的内容集合并且如此路由用户。 日志文件中可能会记录各种操作和事件,并使用正则表达式分析日志文件。
-
公开(公告)号:US07424735B2
公开(公告)日:2008-09-09
申请号:US10985749
申请日:2004-11-09
CPC分类号: H04L63/1408 , H04L63/0227 , H04L63/1425 , H04L63/1441 , H04L63/1491 , Y10S707/99933 , Y10S707/99939
摘要: A system and method are disclosed for providing security for a computer network. Content sets are generated for a computer associated with the network. It is determined whether a user should be routed to the generated content sets. If it is determined that the user should be routed to the generated content sets, a generated content set is selected and the user is so routed. Various actions and events may be recorded in a logfile, and the logfile is analyzed using regular expressions.
摘要翻译: 公开了一种用于为计算机网络提供安全性的系统和方法。 为与网络相关联的计算机生成内容集。 确定用户是否应被路由到生成的内容集。 如果确定用户应被路由到所生成的内容集合,则选择生成的内容集合并且如此路由用户。 日志文件中可能会记录各种操作和事件,并使用正则表达式分析日志文件。
-
公开(公告)号:US09002854B2
公开(公告)日:2015-04-07
申请号:US13353135
申请日:2012-01-18
申请人: Michael J. Baum , David Carasso , Robin K. Das , Rory Greene , Brad Hall , Nick Mealy , Brian Murphy , Stephen Sorkin , Andre Stechert , Erik M. Swan
发明人: Michael J. Baum , David Carasso , Robin K. Das , Rory Greene , Brad Hall , Nick Mealy , Brian Murphy , Stephen Sorkin , Andre Stechert , Erik M. Swan
CPC分类号: G06F17/30336 , G06F17/30321 , G06F17/30342 , G06F17/30353 , G06F17/30516 , G06F17/30528 , G06F17/3053 , G06F17/30551 , G06F17/30554 , G06F17/30864
摘要: Methods and apparatus consistent with the invention provide the ability to organize, index, search, and present time series data based on searches. Time series data are sequences of time stamped records occurring in one or more usually continuous streams, representing some type of activity. In one embodiment, time series data is organized into discrete events with normalized time stamps and the events are indexed by time and keyword. A search is received and relevant event information is retrieved based in whole or in part on the time indexing mechanism, keyword indexing mechanism, or statistical indices calculated at the time of the search.
摘要翻译: 根据本发明的方法和设备提供了基于搜索来组织,索引,搜索和呈现时间序列数据的能力。 时间序列数据是在一个或多个通常连续的流中发生的时间戳记录的序列,表示某种类型的活动。 在一个实施例中,时间序列数据被组织成具有归一化时间戳的离散事件,并且事件由时间和关键字索引。 完全或部分地基于搜索时计算的时间索引机制,关键字索引机制或统计索引,检索相关的事件信息。
-
公开(公告)号:US20110208743A1
公开(公告)日:2011-08-25
申请号:US13099268
申请日:2011-05-02
申请人: Michael J. Baum , David Carasso , Robin K. Das , Brad Hall , Brian Murphy , Stephen Sorkin , Andre Stechert , Erik M. Swan
发明人: Michael J. Baum , David Carasso , Robin K. Das , Brad Hall , Brian Murphy , Stephen Sorkin , Andre Stechert , Erik M. Swan
IPC分类号: G06F17/30
CPC分类号: G06F17/30604 , G06F11/3476 , G06F17/2785 , G06F17/30368 , G06F17/30477 , G06F17/30507 , G06F17/30525 , G06F17/30551 , G06F17/30598 , G06F17/30619 , G06F17/30657 , G06F17/30705 , G06K9/6217 , H04L63/1425 , H04L63/20
摘要: Methods and apparatus consistent with the invention provide the ability to organize and build understandings of machine data generated by a variety of information-processing environments. Machine data is a product of information-processing systems (e.g., activity logs, configuration files, messages, database records) and represents the evidence of particular events that have taken place and been recorded in raw data format. In one embodiment, machine data is turned into a machine data web by organizing machine data into events and then linking events together.
摘要翻译: 与本发明一致的方法和设备提供组织和构建由各种信息处理环境生成的机器数据的理解的能力。 机器数据是信息处理系统(例如,活动日志,配置文件,消息,数据库记录)的产物,并且表示已经发生并以原始数据格式记录的特定事件的证据。 在一个实施例中,机器数据通过将机器数据组织到事件中并将事件链接在一起而变成机器数据网。
-
公开(公告)号:US20080215546A1
公开(公告)日:2008-09-04
申请号:US11868370
申请日:2007-10-05
申请人: Michael J. Baum , David Carasso , Robin K. Das , Rory Greene , Brad Hall , Nick Mealy , Brian Murphy , Stephen Sorkin , Andre Stechert , Erik M. Swan
发明人: Michael J. Baum , David Carasso , Robin K. Das , Rory Greene , Brad Hall , Nick Mealy , Brian Murphy , Stephen Sorkin , Andre Stechert , Erik M. Swan
IPC分类号: G06F7/06
CPC分类号: G06F17/30336 , G06F17/30321 , G06F17/30342 , G06F17/30353 , G06F17/30516 , G06F17/30528 , G06F17/3053 , G06F17/30551 , G06F17/30554 , G06F17/30864
摘要: Methods and apparatus consistent with the invention provide the ability to organize, index, search, and present time series data based on searches. Time series data are sequences of time stamped records occurring in one or more usually continuous streams, representing some type of activity. In one embodiment, time series data is organized into discrete events with normalized time stamps and the events are indexed by time and keyword. A search is received and relevant event information is retrieved based in whole or in part on the time indexing mechanism, keyword indexing mechanism, or statistical indices calculated at the time of the search.
摘要翻译: 根据本发明的方法和设备提供了基于搜索来组织,索引,搜索和呈现时间序列数据的能力。 时间序列数据是在一个或多个通常连续的流中发生的时间戳记录的序列,表示某种类型的活动。 在一个实施例中,时间序列数据被组织成具有归一化时间戳的离散事件,并且事件由时间和关键字索引。 完全或部分地基于搜索时计算的时间索引机制,关键字索引机制或统计索引,检索相关的事件信息。
-
公开(公告)号:US20050090231A1
公开(公告)日:2005-04-28
申请号:US10695198
申请日:2003-10-28
申请人: Bernardo Huberman , Stephen Sorkin , Joshua Tyler
发明人: Bernardo Huberman , Stephen Sorkin , Joshua Tyler
CPC分类号: H04W24/00 , H04L9/0838 , H04L2209/80
摘要: A first communication device (“FCD”) is adapted to communicate with a second communication device. The FCD obtains a first key, encodes an attribute in the FCD with the first key to produce a first encoded value, and transmits the first encoded value to the second communication device. The FCD also receives a second encoded value from the second communication device. The second encoded value comprises an attribute stored in the second communication device that has been encoded with a second key. Further, the FCD encodes the second encoded value with the first key to produce a third encoded value, transmits the third encoded value to the second communication device, and receives a fourth encoded value from the second communication device. The fourth encoded value comprises the first encoded value after being encoded by the second key. The FCD determines whether the third encoded value matches the fourth encoded value.
摘要翻译: 第一通信设备(“FCD”)适于与第二通信设备进行通信。 FCD获得第一密钥,用第一密钥对FCD中的属性进行编码以产生第一编码值,并将第一编码值发送到第二通信设备。 FCD还从第二通信设备接收第二编码值。 第二编码值包括存储在第二通信设备中的已经用第二密钥编码的属性。 此外,FCD用第一密钥对第二编码值进行编码以产生第三编码值,将第三编码值发送到第二通信设备,并从第二通信设备接收第四编码值。 第四编码值包括由第二密钥编码之后的第一编码值。 FCD确定第三编码值是否与第四编码值相匹配。
-
8.发明授权Compressed journaling in event tracking files for metadata recovery and replication 有权用于元数据恢复和复制的事件跟踪文件中压缩日志记录公开(公告)号:US08589403B2
公开(公告)日:2013-11-19
申请号:US13037279
申请日:2011-02-28
IPC分类号: G06F17/30
CPC分类号: G06F17/30144
摘要: Embodiments are directed towards employing compressed journaling for event tracking files for metadata recovery and replication. Event data and related metadata are received from one or more client devices. When a feature within the received metadata is detected that is previously unwritten to a journal, then the previously unwritten feature is written to the journal. Further, any feature is detected for the received event data that is determined to be different from a feature associated with an immediately preceding event data that is written in the journal, then the detected different feature is identified in the journal. In one embodiment, the identification employs writing to the journal an effective feature record that may employ indices identifying the different feature. The received event data is also written to the journal and may further employ string arguments to minimize recording of redundant information into the journal.
摘要翻译: 实施例针对采用用于元数据恢复和复制的事件跟踪文件的压缩日志记录。 从一个或多个客户端设备接收事件数据和相关元数据。 当检测到接收的元数据中先前未被写入日志的特征时,将先前未写入的特征写入日志。 此外,检测到被确定为与写入日志中的紧接在前的事件数据相关联的特征的接收事件数据的任何特征,然后在日志中识别检测到的不同特征。 在一个实施例中,识别使用向日志写入可以使用识别不同特征的索引的有效特征记录。 接收到的事件数据也被写入日志,并且可以进一步使用字符串参数来最小化将冗余信息记录到日志中。
-
9.发明申请COMPRESSED JOURNALING IN EVENT TRACKING FILES FOR METADATA RECOVERY AND REPLICATION 有权事件跟踪文件中的压缩日志用于元数据恢复和复制公开(公告)号:US20120221576A1
公开(公告)日:2012-08-30
申请号:US13037279
申请日:2011-02-28
IPC分类号: G06F17/30
CPC分类号: G06F17/30144
摘要: Embodiments are directed towards employing compressed journaling for event tracking files for metadata recovery and replication. Event data and related metadata are received from one or more client devices. When a feature within the received metadata is detected that is previously unwritten to a journal, then the previously unwritten feature is written to the journal. Further, any feature is detected for the received event data that is determined to be different from a feature associated with an immediately preceding event data that is written in the journal, then the detected different feature is identified in the journal. In one embodiment, the identification employs writing to the journal an effective feature record that may employ indices identifying the different feature. The received event data is also written to the journal and may further employ string arguments to minimize recording of redundant information into the journal.
摘要翻译: 实施例针对采用用于元数据恢复和复制的事件跟踪文件的压缩日志记录。 从一个或多个客户端设备接收事件数据和相关元数据。 当检测到接收的元数据中先前未被写入日志的特征时,将先前未写入的特征写入日志。 此外,检测到被确定为与写入日志中的紧接在前的事件数据相关联的特征的接收事件数据的任何特征,然后在日志中识别检测到的不同特征。 在一个实施例中,识别使用向日志写入可以使用识别不同特征的索引的有效特征记录。 接收到的事件数据也被写入日志,并且可以进一步使用字符串参数来最小化将冗余信息记录到日志中。
-
公开(公告)号:US08015117B1
公开(公告)日:2011-09-06
申请号:US11414287
申请日:2006-04-27
IPC分类号: G06Q20/00
CPC分类号: G06Q30/02 , G06Q20/382 , G06Q20/383 , G06Q20/401
摘要: A system and method for anonymous reporting. Specifically, the method includes collecting user information about a user and generating a user profile based on the user information. The user profile is stored such that the user profile is used to achieve delivery of data that is targeted to the user based on the user profile without requiring a release of user information in the user profile. A signed authorization number is generated. The signed authorization number is signed by the third party but unknown to the third party. The signed authorization number is attached to a report detailing activities of the user. The report along with the signed authorization number is sent to the third party to preserve reporting privacy of the user. The third party is able to authenticate the report using the signed authorization number.
摘要翻译: 一种用于匿名报告的系统和方法。 具体地,该方法包括收集关于用户的用户信息并基于用户信息生成用户简档。 存储用户简档,使得用户简档被用于基于用户简档来实现针对用户的数据的传递,而不需要在用户简档中释放用户信息。 生成一个签名的授权号码。 签名的授权号码由第三方签名,但第三方不知道。 已签署的授权号码附于详细说明用户活动的报告。 该报告连同签名的授权号码一起发送给第三方,以保护用户的报告隐私。 第三方能够使用签名的授权号对该报告进行身份验证。
-
-
-
-
-
-
-
-
-
搜索结果
15 条记录 (耗时 0.022 秒)
