Use of inference techniques to facilitate categorization of system change information
First Claim
1. A method comprising:
- receiving, by a computing device executing programming instructions for a monitor server, change data associated with a plurality of changes captured on a target host, the target host providing the change data in response to detecting the plurality of changes to target host data using one or more rules or collection policies to capture the changes, wherein the change data includes at least one or more of the following;
rules, settings, or parameters;
analyzing, by the monitor server, the change data in order to group the change data into clusters;
classifying, by the monitor server, the clusters relating to at least one potential reason for the plurality of changes in order to categorize at least some of the clusters;
determining, by the monitor server, whether the change data violate one or more compliance policies;
generating, by the monitor server, one or more test results based at least on the results of the determining;
analyzing, by the monitor server, the one or more test results in order to group the one or more test results into test result clusters; and
classifying, by the monitor server, the test result clusters relating to at least one potential reason for the plurality of changes in order to categorize at least some of the test result clusters.
6 Assignments
0 Petitions
Accused Products
Abstract
Methods, systems, and articles for receiving, by a monitor server, change data associated with a change captured on a target host, are described herein. In various embodiments, the target host may have provided the change data in response to detecting the change, and the change data may include one or more rules, settings, and/or parameters. Further, in some embodiments, the monitor server may analyze the change data in order to group the change data into clusters. Once the change data have been classified as clusters, a report may be generated providing classification or categorization and cluster information for the various changes. In various embodiments, the generating may comprise generating a report to the target host and/or to an administrative user.
-
Citations
18 Claims
-
1. A method comprising:
-
receiving, by a computing device executing programming instructions for a monitor server, change data associated with a plurality of changes captured on a target host, the target host providing the change data in response to detecting the plurality of changes to target host data using one or more rules or collection policies to capture the changes, wherein the change data includes at least one or more of the following;
rules, settings, or parameters;analyzing, by the monitor server, the change data in order to group the change data into clusters; classifying, by the monitor server, the clusters relating to at least one potential reason for the plurality of changes in order to categorize at least some of the clusters; determining, by the monitor server, whether the change data violate one or more compliance policies; generating, by the monitor server, one or more test results based at least on the results of the determining; analyzing, by the monitor server, the one or more test results in order to group the one or more test results into test result clusters; and classifying, by the monitor server, the test result clusters relating to at least one potential reason for the plurality of changes in order to categorize at least some of the test result clusters. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A monitor server residing on a computing device comprising:
-
a processor; a change database for storing change data associated with a plurality of changes captured on a target host, the target host providing the change data to the monitor server in response to detecting the plurality of changes, wherein the change data includes at least one or more of the following;
rules, settings, or parameters; andone or more logic components communicatively coupled to the change database and to be operated by the processor to; receive the change data; store the change data in the change database; analyze the change data in order to group the change data into clusters; classify the clusters relating to at least one potential reason for the plurality of changes in order to categorize at least some of the clusters; determine whether the change data violate one or more compliance policies; generate one or more test results based at least on the results of the determining; analyze the one or more test results in order to group the one or more test results into test result clusters; and classify the test result clusters relating to at least one potential reason for the plurality of changes in order to categorize at least some of the test result clusters. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
-
16. An article of manufacture comprising:
-
a storage medium; and a plurality of programming instructions stored on the storage medium and configured to program a computing device executing a monitor server to; receive change data provided by a target host in response to detecting one or more changes captured on the target host, wherein the change data includes at least one or more of the following;
rules, settings, or parameters;analyze the change data in order to group the change data into clusters; classify the clusters relating to at least one potential reason for the plurality of changes in order to categorize at least some of the clusters; determine whether the change data violate one or more compliance policies; generate one or more test results based at least on the results of the determining; analyze the one or more test results in order to group the one or more test results into test result clusters; and classify the test result clusters relating to at least one potential reason for the plurality of changes in order to categorize at least some of the test result clusters. - View Dependent Claims (17, 18)
-
Specification