LOG ANALYZING SYSTEM AND METHOD
First Claim
1. A log analyzing system which analyzes a communication log of a control device, the log analyzing system comprising:
- a network device which receives a communication packet corresponding to the communication log from a network; and
a monitoring device which monitors communication to the network device,wherein the monitoring device obtains a difference between a communication pattern of the communication packet and a stable pattern, which is a pattern of a communication in a state of no unauthorized access, restores the communication packet based on the difference, and notifies the restored communication packet.
1 Assignment
0 Petitions
Accused Products
Abstract
Proposed are a log analyzing system and a log analyzing method capable of more effectively defending a control system from unauthorized access. The log analyzing system which analyzes a communication log of a control device comprises a network device which receives a communication packet corresponding to the communication log from a network, and a monitoring device which monitors communication to the network device, wherein the monitoring device obtains a difference between a communication pattern of the communication packet and a stable pattern, which is a pattern of a communication in a state of no unauthorized access, restores the communication packet based on the difference, and notifies the restored communication packet.
20 Citations
9 Claims
-
1. A log analyzing system which analyzes a communication log of a control device, the log analyzing system comprising:
-
a network device which receives a communication packet corresponding to the communication log from a network; and a monitoring device which monitors communication to the network device, wherein the monitoring device obtains a difference between a communication pattern of the communication packet and a stable pattern, which is a pattern of a communication in a state of no unauthorized access, restores the communication packet based on the difference, and notifies the restored communication packet. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A log analyzing method in a log analyzing system which analyzes a communication log of a control device,
wherein the log analyzing system comprises: -
a network device which receives a communication packet corresponding to the communication log from a network; and a monitoring device which monitors communication to the network device, and wherein the log analyzing method comprises; a first step of the monitoring device obtaining a difference between a communication pattern of the communication packet and a stable pattern, which is a pattern of a communication in a state of no unauthorized access; a second step of the monitoring device restoring the communication packet based on the difference; and a third step of the monitoring device notifying the restored communication packet.
-
Specification