Data-centric monitoring of compliance of distributed applications

Assignee

• International Business Machines Corporation · US

Inventors

• Suresh N. Chari · Yorktown Heights, US
• Ted A. Habeck · Fishkill, US
• Ashish Kundu · Elmsford, US
• Ian M. Molloy · Chappaqua, US
• Dimitrios Pendarakis · Westport, US
• Josyula R. Rao · Briarcliff Manor, US
• Marc Philippe Stoecklin · Bern, CH

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L67/10
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Log(s) of IT events are accessed in a distributed system that includes a distributed application. The distributed system includes multiple data objects. The distributed application uses, processes, or otherwise accesses one or more of data objects. The IT events concern the distributed application and concern accesses by the distributed application to the data object(s). The IT events are correlated with a selected set of the data objects. Risks are estimated to the selected set of data objects based on the information technology events. Estimating risks uses at least ranks of compliance rules as these rules apply to the data objects in the system, and vulnerability scores of systems corresponding to the set of data objects and information technology events. Information is output that allows a user to determine the estimated risks for the selected set of data objects. Techniques for determining ranks of compliance rules are also disclosed.