SYSTEM AND METHOD FOR IDENTIFYING REAL USERS BEHIND APPLICATION SERVERS
First Claim
1. A method for identifying the user identity of a user accessing a database by a monitoring device, the monitoring device being connected to a plurality of monitoring points, the monitoring device having at least one monitoring port, a parser, a comparator, and a storage unit, comprising the steps of:
- capturing a data request by at least one monitoring port at a first monitoring point;
parsing the data request by the parser;
capturing a data manipulation command by the at least one monitoring port at a second monitoring point;
parsing the data manipulation command by the parser;
comparing the parsed data request with the parsed data manipulation command; and
if there is a match between the parsed data request and the parsed data manipulation command, associating the parsed data manipulation command with the user identity associated with the data request.
2 Assignments
0 Petitions
Accused Products
Abstract
The present invention provides a monitoring device and method for identifying the identity of users requesting database accesses. The data request from application servers to an application server are monitored and parsed. The SQL statements associated with the data request from the application server are also monitored and parsed, so are the SQL responses from the database server. The SQL responses are sent back to the user as data responses. The data responses are also monitored and parsed. The monitoring device matches the parsed data request with the parsed SQL statements, the parsed SQL responses, and the parsed data responses. By matching the string portion of these parsed data, the monitoring device can then identity the identity of the user making such data base quest.
9 Citations
16 Claims
-
1. A method for identifying the user identity of a user accessing a database by a monitoring device, the monitoring device being connected to a plurality of monitoring points, the monitoring device having at least one monitoring port, a parser, a comparator, and a storage unit, comprising the steps of:
-
capturing a data request by at least one monitoring port at a first monitoring point; parsing the data request by the parser; capturing a data manipulation command by the at least one monitoring port at a second monitoring point; parsing the data manipulation command by the parser; comparing the parsed data request with the parsed data manipulation command; and if there is a match between the parsed data request and the parsed data manipulation command, associating the parsed data manipulation command with the user identity associated with the data request. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A monitoring device for identifying the user identity of a user accessing a database, comprising:
-
at least one monitoring port for connecting to a plurality of monitoring points and monitoring data at the plurality of monitoring points; a parser for parsing data captured by the at least one monitoring port; a comparator for comparing the parsed data; and a storage unit for storing the captured data and the parsed data. - View Dependent Claims (8, 9, 10)
-
-
11. A computer program residing on a computer-readable medium for identifying the user identity of a user accessing a database by a monitoring device, the monitoring device being connected to a plurality of monitoring points, the monitoring device having at least one monitoring port, a parser, a comparator, and a storage unit, the computer program when executed by the monitoring device causes the monitoring device to perform the following steps:
-
capturing a data request by at least one monitoring port at a first monitoring point; parsing the data request by the parser; capturing a data manipulation command by the at least one monitoring port at a second monitoring point; parsing the data manipulation command by the parser; comparing the parsed data request with the parsed data manipulation command; and if there is a match between the parsed data request and the parsed data manipulation command, associating the parsed data manipulation command with the user identity associated with the data request. - View Dependent Claims (12, 13, 14, 15, 16)
-
Specification