×

Monitoring and reporting of data access behavior of authorized database users

  • US 8,566,956 B2
  • Filed: 12/06/2010
  • Issued: 10/22/2013
  • Est. Priority Date: 06/23/2010
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method of monitoring user activity in a database system comprising a processor and a memory element, the method comprising:

  • maintaining, by the processor and the memory element, a plurality of different daily scores for a plurality of different monitored data access events, resulting in a set of daily scores for a user, wherein each of the monitored data access events has a respective one of the daily scores associated therewith, and wherein each of the monitored data access events is associated with user access to a respective data object maintained by the database system;

    detecting, by the processor, occurrences of the monitored data access events associated with the user accessing data objects maintained by the database system;

    recording, by the processor, the occurrences of the monitored data access events, resulting in recorded events;

    in response to each recorded event, adjusting the set of daily scores for the user to obtain an updated set of daily scores for the user, wherein adjusting the set of daily scores is performed by the processor;

    calculating an aggregate daily score from the updated set of daily scores, wherein the aggregate daily score indicates risk sensitivity of the monitored data access events;

    comparing, by the processor, the aggregate daily score to a corresponding threshold score defined by a scoring profile maintained for the user; and

    initiating, by the processor, a course of action when the aggregate daily score diverges from the corresponding threshold score.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×