IDS log analysis support apparatus, IDS log analysis support method and IDS log analysis support program
First Claim
Patent Images
1. An IDS log analysis support apparatus comprising:
- a log collection section that collects a log of an intrusion detection system that is connected to a telecommunication network;
a database that stores and manages logs collected by the log collection section; and
a log analysis section that obtains statistics of the logs managed by the database and analyses the statistics.
1 Assignment
0 Petitions
Accused Products
Abstract
There is provided an IDS log analysis support apparatus, an IDS log analysis support method, and an IDS log analysis support program that enable logs that are different from normal logs to be extracted from logs output in great quantity from a variety of IDS, and enable the degree of abnormality thereof to be objectively evaluated. The apparatus has a log collection section that collects logs of IDS that are connected to a telecommunication network, a database that stores and manages logs collected by the log collection section, and a log analysis section that obtains statistics of logs managed by the database and performs analysis processing thereon.
-
Citations
30 Claims
-
1. An IDS log analysis support apparatus comprising:
-
a log collection section that collects a log of an intrusion detection system that is connected to a telecommunication network;
a database that stores and manages logs collected by the log collection section; and
a log analysis section that obtains statistics of the logs managed by the database and analyses the statistics. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. An IDS log analysis support method comprising the steps of:
-
regularly collecting a log of an intrusion detection system that is connected to a telecommunication network;
storing logs in a database and managing the logs; and
obtaining statistics of the logs managed by the database and performing analysis processing on the statistics. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. An IDS log analysis support program that analyzes a log of an intrusion detection system connected to a telecommunication network, the IDS log analysis support program executing on a computer:
-
a log collection step in which logs are collected from the intrusion detection system;
a database creation step in which the logs collected in the log collection step are stored and the stored logs are managed; and
a log analysis step in which statistics are obtained for the logs managed in the database creation step and the statistics are analyzed. - View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29, 30)
-
Specification