Feedback mechanism to minimize false assertions of a network intrusion
First Claim
Patent Images
1. A graphical user interface rendered on a display associated with an intrusion detection system, the graphical user interface comprising:
- a field that depicts a summary of anomalies identified as part of an event that is detected in a network, the summary indicating event severity details of the event; and
an alert action region including a control to permit a user to snooze future alerts related to the event in the summary for a period of time.
21 Assignments
0 Petitions
Accused Products
Abstract
A graphical user interface for an intrusion detection system is described. The graphical user interface includes a field that depicts a summary of anomalies identified as part of a event that is detected in a network, the summary indicating event severity details of the event and an alert action region including a control to permit a user to snooze future alerts related to the event in the summary for a period of time.
77 Citations
25 Claims
-
1. A graphical user interface rendered on a display associated with an intrusion detection system, the graphical user interface comprising:
-
a field that depicts a summary of anomalies identified as part of an event that is detected in a network, the summary indicating event severity details of the event; and an alert action region including a control to permit a user to snooze future alerts related to the event in the summary for a period of time. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method comprises:
-
providing an operator with a list of events identified by an intrusion detection system, within the list of events being information indicating event severity, with event severity determined for an event, by the event having a percentage relationship to an established threshold for issuing an event notification; displaying details of a selected one of the events to a user; and providing on a graphical user interface a snooze control to allow a user to snooze future alerts related to the selected event. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A computer program product residing on a computer readable medium for producing a graphical user interface for an intrusion detection system, the computer program product comprising instructions for causing a computer to:
-
render a graphical user interface on an output device, the graphical user interface comprising; a field that depicts a summary of anomalies identified as part of an event that is detected in a network, the summary indicating event severity details of the event; an alert action region including a control to permit a user to snooze future alerts related to the event in the summary for a period of time. - View Dependent Claims (23, 24, 25)
-
Specification