首页>
外国专利>
Creating Timeline Views of Information Technology Event Investigations
Creating Timeline Views of Information Technology Event Investigations
展开▼
机译:创建信息技术事件调查的时间表视图
展开▼
页面导航
摘要
著录项
相似文献
摘要
Techniques and mechanisms are disclosed that enable network security analysts and other users to efficiently conduct network security investigations and to produce useful representations of investigation results. As used herein, a network security investigation generally refers to an analysis by an analyst (or team of analysts) of one or more detected network events that may pose internal and/or external threats to a computer network under management. A network security application provides various interfaces that enable users to create investigation timelines, where the investigation timelines display a collection of events related to a particular network security investigation. A network security application further provides functionality to monitor and log user interactions with the network security application, where particular logged user interactions may also be added to one or more investigation timelines.
展开▼