Message parsing in a network security system
US7844999B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Mar 1, 2005 |
| Grant date | Nov 30, 2010 |
| Priority date | — |
| Expiry date | Oct 10, 2027 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F2221/2151
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Device discovery can be made efficient using certain embodiments of the present invention. In one embodiment, the present invention includes accessing a message in a message log, wherein the message log associates a host identifier with the message, the host identifier being an identifier of a host that sent the message to the message log. Then a list of parsers associated with the host identifier associated with the message can be accessed and parsing the message using parsers from the list of parsers associated with the host identifier can be attempted. If the parsing is unsuccessful, a device type of an originator of the message can be discovered, and a parser associated with the discovered device type can be added to the list of parsers associated with the host identifier.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.