Patent · US Active

Computer-implemented method and system for security event correlation

US7673335B1 · kind B1 · utility

36Cited by

12References

24Claims

0Family size

Assignee

Novell, Inc. · US

Inventors

Dipto Chakravarty · Potomac, US
Ofer Zajicek · Potomac, US
Frank Anthony Pellegrino · Greenbelt, US
Usman Choudhary · Springfield, US
John Paul Gassner · Wonder Hills, US
Melvin Antony · Vienna, US

Key dates

Filing date	Oct 29, 2004
Grant date	Mar 2, 2010
Priority date	—
Expiry date	Sep 13, 2027

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/552
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A system and method for analyzing events from devices relating to network security, includes a device interface(s), for receiving events from devices. One or more processors, responsive to the event received pursuant to the device interfaces, evaluate the event in accordance with rules, wherein the rules define, inter alia, an operation the system is to take to evaluate the event and an action to be taken under specified conditions. Also, the processor can determine, responsive to the received event, whether the event is of interest, and if not, discarding the event. The processor can provide a correlation corresponding to the at least one event, for the rules.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.