Patent
Storing log data efficiently while supporting querying to assist in computer network security
Reads0
Chats0
TLDR
In this article, a logging system includes an event receiver and a storage manager, where the receiver receives log data, processes it, and outputs a data chunk and stores them so that they can be queried.Abstract:
A logging system includes an event receiver and a storage manager. The receiver receives log data, processes it, and outputs a data 'chunk.' The manager receives data chunks and stores them so that they can be queried. The receiver includes buffers that store events and a metadata structure that stores metadata about the contents of the buffers. The metadata includes a unique identifier associated with the receiver, the number of events in the buffers, and, for each 'field of interest,' a minimum value and a maximum value that reflect the range of values of that field over all of the events in the buffers. A chunk includes the metadata structure and a compressed version of the contents of the buffers. The metadata structure acts as a search index when querying event data. The logging system can be used in conjunction with a security information/event management (SIEM) system.read more
Citations
More filters
Patent
Data object store and server for a cloud storage environment, including data deduplication and data management across multiple cloud storage sites
Anand Prahlad,Marcus S. Muller,Rajiv Kottomtharayil,Srinivas Kavuri,Parag Gokhale,Manoj Kumar Vijayan +5 more
TL;DR: In this paper, content indexing, containerized deduplication, and policy-driven storage are performed within a cloud environment, and methods for providing a cloud gateway and a scalable data object store within a Cloud environment are disclosed, along with other features.
Patent
Storing log data efficiently while supporting querying
TL;DR: In this article, a logging system includes an event receiver and a storage manager, where the receiver receives log data, processes it, and outputs a column-based data "chunk" which acts as a search index when querying event data.
Patent
Method and System for Monitoring a Mobile Equipment Fleet
TL;DR: In this paper, a method for analyzing the data using a set of rules is presented, and an alert is sent in response to the analysis of the data by using the rules.
Patent
Information management of data associated with multiple cloud services
TL;DR: In this article, a method and system for providing information management of data from hosted services receives information management policies for a hosted account of a hosted service, requests data associated with the hosted account from the hosted service and provides a preview version of the received data to a computing device.
Patent
Security threat detection associated with security events and an actor category model
TL;DR: In this article, the actor category model includes levels arranged in a hierarchy and each level is associated with a subcategory for a category of the model, and a determination of whether a security threat exists is performed based on the correlating.
References
More filters
Patent
Method and apparatus for policy based class service and adaptive service level management within the context of an internet and intranet
TL;DR: In this paper, a method and apparatus for robustly enhanced Class of Service (COS) at the application layer permits highly flexible privilege based access and enables implementation of complex policies and rules for classification and differentiation of services.
Patent
Self-regulated resource management of distributed computer resources
TL;DR: A distributed system for the management of distributed resources interconnected by a computer network and comprised of a plurality of limited supply resources (such as those associated with multimedia content servers, e.g., bandwidth, CPU, storage, etc.) is described in this article.
Patent
Technique for prefetching a web page of potential future interest in lieu of continuing a current information download
TL;DR: In this article, a probabilistic user model is proposed for prefetching a web page of future interest to a user, in terms of a discounted expected rate of refinement in value with time for the future page, than a current incremental benefit being obtained for that user by continuing the current download.
Patent
Real time monitoring and analysis of events from multiple network security devices
TL;DR: In this paper, security events generated by a number of network devices are gathered and normalized to produce normalized security events in a common schema, which are cross-correlated according to rules to generate meta-events.
Patent
Database system and methods
TL;DR: In this paper, the authors describe a method for transaction processing that includes specifying metadata and storing the metadata, and then creating an index in response to the stored metadata, which is then modified by modifying the first index.