System and method of graphically correlating data for an intrusion protection system
First Claim
1. A method of displaying data related to an intrusion event on a computer system, comprising:
- capturing data related to the intrusion event;
decoding the captured data from a first predetermined format to a second predetermined format decipherable by humans, the decoded data in turn comprising intrusion signature, data summary, and detailed data;
correlating data components of the intrusion signature, data summary and detailed data to one another; and
graphically displaying the correlated decoded data components.
2 Assignments
0 Petitions
Accused Products
Abstract
In accordance with the present invention, a method of displaying data related to an intrusion event on a computer system comprises data components of the steps of capturing data related to the intrusion event and decoding the captured data from a predetermined format to a predetermined format decipherable by humans. The decoded data comprises data components of the intrusion signature, data summary, and detailed data. The method further comprises data components of the steps of correlating data components of the intrusion signature, data summary and detailed data to one another, and then graphically displaying the correlated decoded data components.
-
Citations
24 Claims
-
1. A method of displaying data related to an intrusion event on a computer system, comprising:
-
capturing data related to the intrusion event;
decoding the captured data from a first predetermined format to a second predetermined format decipherable by humans, the decoded data in turn comprising intrusion signature, data summary, and detailed data;
correlating data components of the intrusion signature, data summary and detailed data to one another; and
graphically displaying the correlated decoded data components. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method of graphically displaying data related to an intrusion event on a computer system, comprising:
-
capturing data related to the intrusion event (the data comprising data components of intrusion signature, data summary, and detailed data);
correlating data components of the intrusion signature, data summary and detailed data to one another; and
graphically displaying the correlated data components. - View Dependent Claims (11, 12, 13, 14, 15, 16)
-
-
17. A system of presenting data of an intrusion detection system, comprising:
-
a network driver capturing data related to an intrusion event upon detecting a predetermined intrusion signature;
a decode engine decoding the captured data from a first predetermined format to a second predetermined format decipherable by humans, the decoded data comprising data components of intrusion event data, data summary, and detailed data; and
a user interface correlating data components of the intrusion signature, intrusion event data, data summary and detailed data to one another and displaying the correlated decoded data components. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24)
-
Specification