Integrity monitoring in a local network
First Claim
1. A method of monitoring a network comprising a plurality of machines located at a non-static collection of nodes that form a linear communication orbit, the method comprising:
- at a respective node in the linear communication orbit, wherein each machine of the plurality of machines has a respective machine identifier, and the plurality of machines have self-organized into an ordered sequence in accordance with a predefined order of the respective machine identifiers of the plurality of machines, performing a set of integrity monitoring operations, comprising;
receiving a watch list through the linear communication orbit, wherein the watch list is sent by a server system coupled to the linear communication orbit, and propagates from node to node along the linear communication orbit until reaching the respective node, and the watch list identifies one or more objects for which events are to be monitored;
identifying a plurality of events that occur locally at the respective node, including events for the one or more objects identified by the received watch list, in real-time while the plurality of events are occurring;
storing in a local database event information for the identified plurality of events at the respective node;
receiving an integrity reporting request through the linear communication orbit, wherein the integrity reporting request is sent by the server system, and propagates from node to node along the linear communication orbit until reaching the respective node;
in response to the integrity reporting request, identifying a subset of the event information for the identified plurality of events in the local database, the subset corresponding to event information for at least some of the one or more objects identified by the received watch list, and returning the identified subset of the event information to the server system through the linear communication orbit.
1 Assignment
0 Petitions
Accused Products
Abstract
This application is directed to an integrity monitoring method performed at a computational machine in a linear communication orbit. The computational machine receives a watch list through the linear communication orbit. The watch list identifies objects for which events are to be monitored at the computational machine. While a plurality of events are occurring locally at the computational machine, the computational machine identifies the plurality of events in real-time. The identified events include events for the objects identified by the watch list, and event information for these identified events is stored in a local database of the computational machine. In response to an integrity reporting request received through the linear communication orbit, the computational machine identifies event information for at least some of the objects identified by the watch list in the local database, and returns the identified event information to a server system through the linear communication orbit.
112 Citations
58 Claims
-
1. A method of monitoring a network comprising a plurality of machines located at a non-static collection of nodes that form a linear communication orbit, the method comprising:
at a respective node in the linear communication orbit, wherein each machine of the plurality of machines has a respective machine identifier, and the plurality of machines have self-organized into an ordered sequence in accordance with a predefined order of the respective machine identifiers of the plurality of machines, performing a set of integrity monitoring operations, comprising; receiving a watch list through the linear communication orbit, wherein the watch list is sent by a server system coupled to the linear communication orbit, and propagates from node to node along the linear communication orbit until reaching the respective node, and the watch list identifies one or more objects for which events are to be monitored; identifying a plurality of events that occur locally at the respective node, including events for the one or more objects identified by the received watch list, in real-time while the plurality of events are occurring; storing in a local database event information for the identified plurality of events at the respective node; receiving an integrity reporting request through the linear communication orbit, wherein the integrity reporting request is sent by the server system, and propagates from node to node along the linear communication orbit until reaching the respective node; in response to the integrity reporting request, identifying a subset of the event information for the identified plurality of events in the local database, the subset corresponding to event information for at least some of the one or more objects identified by the received watch list, and returning the identified subset of the event information to the server system through the linear communication orbit. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
-
23. A method of monitoring a network comprising a plurality of machines located at a non-static collection of nodes that form a linear communication orbit, the method comprising:
at a server system coupled to the linear communication orbit, wherein each machine of the plurality of machines has a respective machine identifier, and the plurality of machines have self-organized into an ordered sequence in accordance with a predefined order of the respective machine identifiers of the plurality of machines, performing a set of integrity monitoring operations, comprising; sending a watch list through the linear communication orbit to two or more machines of the plurality of machines in the linear communication orbit, wherein the watch list propagates from node to node along the linear communication orbit until reaching each of the two or more machines, and the watch list identifies one or more objects for which events are to be monitored at the two or more machines; sending an integrity reporting request through the linear communication orbit to the two or more machines, wherein the integrity reporting request propagates from node to node along the linear communication orbit until reaching each of the two or more machines; in response to the integrity reporting request, receiving from each of the two or more machines a subset of event information for a plurality of events, wherein the plurality of events are identified locally in real-time at the two or more machines, and the event information for the plurality of events is stored in local databases of the two or more machines, the subset of the event information corresponding to event information for at least some of the one or more objects identified by the watch list. - View Dependent Claims (24)
-
25. A server system for monitoring a network comprising a plurality of machines located at a non-static collection of nodes that form a linear communication orbit, the server configured to be coupled to the linear communication orbit, wherein each machine of the plurality of machines has a respective machine identifier, and the plurality of machines have self-organized into an ordered sequence in accordance with a predefined order of the respective machine identifiers of the plurality of machines;
- the server system comprising;
one or more processors; and memory storing one or more programs, the one or more programs including instructions for performing a set of integrity monitoring operations, including; sending a watch list through the linear communication orbit to two or more machines of the plurality of machines in the linear communication orbit, wherein the watch list propagates from node to node along the linear communication orbit until reaching each of the two or more machines, and the watch list identifies one or more objects for which events are to be monitored at the two or more machines; sending an integrity reporting request through the linear communication orbit to the two or more machines, wherein the integrity reporting request propagates from node to node along the linear communication orbit until reaching each of the two or more machines; in response to the integrity reporting request, receiving from each of the two or more machines a subset of event information for a plurality of events, wherein the plurality of events are identified locally in real-time at the two or more machines, and the event information for the plurality of events is stored in local databases of the two or more machines, the subset of the event information corresponding to event information for at least some of the one or more objects identified by the watch list. - View Dependent Claims (26)
- the server system comprising;
-
27. A non-transitory computer readable storage medium storing one or more programs configured for execution by a server system for monitoring a network comprising a plurality of machines located at a non-static collection of nodes that form a linear communication orbit;
-
wherein each machine of the plurality of machines has a respective machine identifier, and the plurality of machines have self-organized into an ordered sequence in accordance with a predefined order of the respective machine identifiers of the plurality of machines;
the one or more programs comprising instructions for;sending a watch list through the linear communication orbit to two or more machines of the plurality of machines in the linear communication orbit, wherein the watch list propagates from node to node along the linear communication orbit until reaching each of the two or more machines, and the watch list identifies one or more objects for which events are to be monitored at the two or more machines; sending an integrity reporting request through the linear communication orbit to the two or more machines, wherein the integrity reporting request propagates from node to node along the linear communication orbit until reaching each of the two or more machines; and in response to the integrity reporting request, receiving from each of the two or more machines a subset of event information for a plurality of events, wherein the plurality of events are identified locally in real-time at the two or more machines, and the event information for the plurality of events is stored in local databases of the two or more machines, the subset of the event information corresponding to event information for at least some of the one or more objects identified by the watch list. - View Dependent Claims (28)
-
-
29. A computational machine for monitoring a network comprising a plurality of machines located at a non-static collection of nodes that form a linear communication orbit, comprising:
-
one or more processors; and memory having instructions stored thereon, which when executed by the one or more processors cause the computational machine to perform a set of integrity monitoring operations including; at a respective node in the linear communication orbit, wherein each machine of the plurality of machines has a respective machine identifier, and the plurality of machines have self-organized into an ordered sequence in accordance with a predefined order of the respective machine identifiers of the plurality of machines; receiving a watch list through the linear communication orbit, wherein the watch list is sent by a server system coupled to the linear communication orbit, and propagates from node to node along the linear communication orbit until reaching the respective node, and the watch list identifies one or more objects for which events are to be monitored; identifying a plurality of events that occur locally at the respective node, including events for the one or more objects identified by the received watch list, in real-time while the plurality of events are occurring; storing in a local database event information for the identified plurality of events at the respective node; receiving an integrity reporting request through the linear communication orbit, wherein the integrity reporting request is sent by the server system, and propagates from node to node along the linear communication orbit until reaching the respective node; and in response to the integrity reporting request, identifying a subset of the event information for the identified plurality of events in the local database, the subset corresponding to event information for at least some of the one or more objects identified by the received watch list, and returning the identified subset of the event information to the server system through the linear communication orbit. - View Dependent Claims (30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44)
-
-
45. A non-transitory computer readable storage medium storing one or more programs configured for execution by a computational machine for monitoring a network comprising a plurality of machines located at a non-static collection of nodes that form a linear communication orbit, the one or more programs comprising instructions for:
at a respective node in the linear communication orbit, wherein each machine of the plurality of machines has a respective machine identifier, and the plurality of machines have self-organized into an ordered sequence in accordance with a predefined order of the respective machine identifiers of the plurality of machines; receiving a watch list through the linear communication orbit, wherein the watch list is sent by a server system coupled to the linear communication orbit, and propagates from node to node along the linear communication orbit until reaching the respective node, and the watch list identifies one or more objects for which events are to be monitored; identifying a plurality of events that occur locally at the respective node, including events for the one or more objects identified by the received watch list, in real-time while the plurality of events are occurring; storing in a local database event information for the identified plurality of events at the respective node; receiving an integrity reporting request through the linear communication orbit, wherein the integrity reporting request is sent by the server system, and propagates from node to node along the linear communication orbit until reaching the respective node; and in response to the integrity reporting request, identifying a subset of the event information for the identified plurality of events in the local database, the subset corresponding to event information for at least some of the one or more objects identified by the received watch list, and returning the identified subset of the event information to the server system through the linear communication orbit. - View Dependent Claims (46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58)
Specification