专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US07774361B1 Effective aggregation and presentation of database intrusion incidents 有权
标题翻译：数据库入侵事件的有效汇总和呈现
公开(公告)号：US07774361B1
公开(公告)日：2010-08-10
申请号：US11177775
申请日：2005-07-08
申请人： Carey Nachenberg , Abu Wawda , Adam Bromwich , On Lee , Darren Sanders
发明人： Carey Nachenberg , Abu Wawda , Adam Bromwich , On Lee , Darren Sanders
IPC分类号： G06F7/00
CPC分类号： G06F21/552 , G06F17/30306 , H04L63/1416 , Y10S707/952
摘要： An incident managing module aggregates related database intrusion incidents and presents them in a manageable manner. A receiving module receives an anomalous query requesting data from a database and a type-identification module identifies anomaly type for the query received. A conversion module converts the anomalous query into a characteristic representation. In some embodiments, this is done by replacing literal field values in the query with representative values. In other embodiments, this is done by creating a tuple describing anomaly parameters for the anomalous query. In still other embodiments, the query is converted into a characteristic representation that distinguishes between injected and non-injected portions of the query. An aggregation module then aggregates into a group the anomalous queries with substantially similar characteristic representations according to anomaly type and a generation module generates a database intrusion incident report describing the group of anomalous queries.
摘要翻译：事件管理模块聚合相关的数据库入侵事件，并以可管理的方式呈现。接收模块接收从数据库请求数据的异常查询，并且类型识别模块识别所接收的查询的异常类型。转换模块将异常查询转换为特征表示。在一些实施例中，这通过用代表值替换查询中的文字字段值来完成。在其他实施例中，这通过创建描述异常查询的异常参数的元组来完成。在其他实施例中，将查询转换为区分注入的和非注入的查询部分的特征表示。然后，聚合模块根据异常类型将具有基本类似特征表示的异常查询聚合成一组，生成模块生成描述异常查询组的数据库入侵事件报告。

IPRDB

热门服务

关于我们

友情链接

联系方式