×

Security incident identification and prioritization

  • US 7,356,843 B1
  • Filed: 10/01/2003
  • Issued: 04/08/2008
  • Est. Priority Date: 10/01/2003
  • Status: Active Grant
First Claim
Patent Images

1. A method for protecting a computer environment, comprising:

  • providing an archive index that includes for each of one or more stored objects a corresponding archive index entry indicative of a state of the stored object at an archive time with which the entry is associated;

    comparing with the archive index a system index generated at a system index time subsequent to the archive time;

    generating based on the comparison a first event if the comparison indicates that a first stored object associated with the system index has been modified since the archive time; and

    determining whether a correlation exists between the first event and a second event generated in connection with a monitoring process associated with the computer environment.

View all claims
  • 7 Assignments
Timeline View
Assignment View
    ×
    ×