Security market has been expanding steadily as people become more conscious about personal information management. On the other hand, administrators are competing with the flood of logs every day, and chasing for the updates on a new kind of attacks. Given the overwhelming tasks of administrators, it is extremely hard to keep the peace without the help of professionals such as hired system administrators and security analysts. In this paper, we propose an alarm annunciator to analyze system. We constructed the system that detects a large-scale brute-force attack and warns administrating PCs, as a prototype of the system that collects and analyzes logs, and alerts system administrators automatically. The alarm annunciator enables variety of domain administrators to manage their domains and servers with the minimum effort and expense.
展开▼
