首页> 外国专利> Method for automated SIEM custom correlation rule generation through interactive network visualization

Method for automated SIEM custom correlation rule generation through interactive network visualization

机译：通过交互式网络可视化自动生成SIEM定制相关规则的方法

页面导航

摘要
著录项
相似文献

摘要

The present disclosure provides a dynamic method for automated Security Information and Event Management (SIEM) custom correlation rule generation through the use of an interactive network visualization. The visualization is based on log data received from network endpoints and inputs received from a user, and is provided to the user for feedback before the SIEM custom correlation rules are automatically generated based on the visualization. The automatically generated SIEM custom correlation rules are then used to determine whether to trigger actions based on event data received from the network endpoints.

机译：本公开提供了一种动态方法，用于通过使用交互式网络可视化来自动生成安全信息和事件管理（SIEM）定制相关规则。可视化基于从网络端点接收的日志数据和从用户接收的输入，并在基于可视化自动生成SIEM定制相关规则之前提供给用户以进行反馈。然后使用自动生成的SIEM定制相关性规则基于从网络端点接收到的事件数据来确定是否触发动作。

著录项

公开/公告号AU2017398945B2

专利类型
公开/公告日2020-08-27

原文格式PDF
申请/专利权人 INTUIT INC.;
展开▼

申请/专利号AU20170398945
发明设计人 RAJKUMAR VISHAL;
展开▼

申请日2017-04-28
分类号H04L29/06;H04L12/24;
国家 AU
入库时间 2022-08-21 11:12:48

相似文献

专利
外文文献
中文文献