Log collection, structuring and processing
US8032489B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Jan 25, 2010 |
| Grant date | Oct 4, 2011 |
| Priority date | — |
| Expiry date | Jan 25, 2030 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L43/045
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
The present invention generally relates to log message processing such that events can be detected and alarms can be generated. For example, log messages are generated by a variety of network platforms (e.g., Windows servers, Linux servers, UNIX servers, databases, workstations, etc.). Often, relatively large numbers of logs are generated from these platforms in different formats. A log manager described herein collects such log data using various protocols (e.g., Syslog, SNMP, SMTP, etc.) to determine events. That is, the log manager may communicate with the network platforms using appropriate protocols to collect log messages therefrom. The log manager may then determine events (e.g., unauthorized access, logins, etc.) from the log data and transfer the events to an event manager. The event manager may analyze the events and determine whether alarms should be generated therefrom.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.