Real-time activity monitoring and reporting
First Claim
Patent Images
1. A system for real-time activity monitoring and responsive actions, comprising:
- a host having an application;
a client in communication link with and interacting with the application; and
a monitor having traffic, rules and actions engines, the traffic engine for substantially real-time sniffing and parsing of all communications between the client and the host, the rules engine for a substantially real-time rule-based evaluation of parsed communications, and the actions engine for a substantially real-time performance of an action responsive to a communication which is deemed by the rule-based evaluation to meet a rule applied by the rules engine, wherein the monitor is transparent to both the client and the application running on the host.
8 Assignments
0 Petitions
Accused Products
Abstract
In order to track activities in a computerized system with client-server or other communications, a system configuration is needed which monitors, logs and reports traffic. This is somewhat akin to but not entirely similar a firewall. Thus, the invention contemplates a real-time, platform-independent, rule-based activity monitor for detecting a particular activity of interest as it occurs and for reporting such activity and the user substantially as fast.
459 Citations
33 Claims
-
1. A system for real-time activity monitoring and responsive actions, comprising:
-
a host having an application;
a client in communication link with and interacting with the application; and
a monitor having traffic, rules and actions engines, the traffic engine for substantially real-time sniffing and parsing of all communications between the client and the host, the rules engine for a substantially real-time rule-based evaluation of parsed communications, and the actions engine for a substantially real-time performance of an action responsive to a communication which is deemed by the rule-based evaluation to meet a rule applied by the rules engine, wherein the monitor is transparent to both the client and the application running on the host. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A system for real-time activity monitoring and responsive actions, comprising:
-
a host machine having a host and an application;
an actions machine having an actions engine; and
one or more user machines having a client and a monitor instance, each client being in communication link with the application via the host, wherein each monitor instance has traffic and rules engines, each traffic engine for a substantially real-time sniffing and parsing of all communications between a respective client and the application, each rules engine for a substantially real-time rule-based evaluation of parsed communications, and the actions engine for receiving alerts from the rules engines and for performing a substantially real-time action responsive to a communication being deemed by such rules engines to meet a rule applied by the rules engine, and wherein the monitor is transparent to each of the clients and the application running on the host. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 24)
-
-
21. A system for real-time activity monitoring and responsive actions, comprising:
-
a first machine having a first application;
a second machine having a second application; and
an application interface interposed between the first and second machines and having a monitor which is in communications link with the first and second applications, wherein the monitor has traffic, rules and actions engines, the traffic engine for substantially real-time sniffing and parsing of all communications between the first and second applications, the rules engine for substantially real-time evaluation of parsed communications, and the actions engine for performing a substantially real-time action responsive to communications deemed by the rules engine to meet a rule, wherein the monitor is transparent to both the first and second applications. - View Dependent Claims (22, 23, 25, 26, 27, 28)
-
-
29. A method for real-time activity monitoring and responsive actions via a computerized system with client-server communications, comprising;
-
in a computerized system with a host and one or more clients in communications link with the host, instantiating a client session associated with a client that interfaces with a server application on the host, the server application having one or more screens associated therewith each of which containing one or more fields;
establishing in a monitor a connection with the server for each instantiated client session, wherein the monitor is logically interposed between the host and the client;
selecting one or more of the fields;
defining a rule a condition and an action that attach to the selected one or more fields; and
uploading the rule and action to the monitor for subsequent run-time use, wherein the rule is applied in real-time to the selected one or more fields each time they are encountered, the rule being employed for evaluating activity embodied in client-server communications, and the action being initiated when the evaluated activity meets conditions of the rule. - View Dependent Claims (30, 31, 32, 33)
-
Specification