Patent
Providing semantic connectivity between a java application server and enterprise threat detection system using a J2EE data
Thanh-Phong Lam,Jens Baumgart,Florian Kraemer,Volker Guzman,Anne Jacobi,Kathrin Nos,Jona Hassforther,Omar-Alexander Al-Hujaj,Stefan Rossmanith,Thorsten Menke +9 more
- 15 Dec 2016
13
TL;DR: In this paper, a log processing job executing on a log producing computing system is initiated for processing log data associated with the log-processing computing system and a recovery point is stored with a recovery timestamp indicating a next log entry in the log data to process.
read more
Abstract: A log processing job executing on a log producing computing system is initiated for processing log data associated with the log producing computing system. Log entries are determined to be available for processing. At least one instance of a Log Extractor Factory, Reader, and Transformation component are instantiated for reading and transforming the log data. Read log data is transformed into a common semantic format as transformed log data and transmitted in real-time to a Streaming Component for storage in an Enterprise Threat Detection (ETD) System. A recovery point is stored with a recovery timestamp indicating a next log entry in the log data to process.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
Patent
Pattern creation in enterprise threat detection
Eugen Pritzkau,Joscha Philipp Bohn,Daniel Kartmann,Wei-Guo Peng,Hristina Dinkova,Lin Luo,Thomas Kunz,Marco Rodeck,Hartwig Seifert,Harish Mehta,Nan Zhang,Rita Merkel,Florian Chrosziel +12 more
- 30 Jun 2017
TL;DR: In this article, a set of at least one search result is selected from the search results containing an event desired to be identified in a completed enterprise threat detection (ETD) pattern.
16
Patent
Realtime triggering framework
Eugen Pritzkau,Kathrin Nos,Marco Rodeck,Florian Chrosziel,Jona Hassforther,Rita Merkel,Thorsten Menke,Thomas Kunz,Hartwig Seifert,Harish Mehta,Wei-Guo Peng,Lin Luo,Nan Zhang,Hristina Dinkova +13 more
- 21 Jul 2016
TL;DR: In this article, a computer-implemented method generates a trigger registration for a selected triggering type and stores the generated trigger registration in a triggering persistency, where a received event from an event persistency is analyzed and data associated with the analyzed event is compared with the triggering persistence.
14
Patent
Location enrichment in enterprise threat detection
Marco Rodeck,Harish Mehta,Hartwig Seifert,Thomas Kunz,Eugen Pritzkau,Wei-Guo Peng,Lin Luo,Rita Merkel,Florian Chrosziel,Jona Hassforther,Thorsten Menke +10 more
- 31 Aug 2016
TL;DR: In this article, a smart data streaming engine (SDS) is used to extract subnet information and location information from a database, and a particular subnet of the subnet is associated with a particular location of the location information by a globally unique location ID value.
14
Patent
Anomaly detection in enterprise threat detection
Jona Hassforther,Jens Baumgart,Thorsten Menke,Volker Guzman,Florian Kraemer,Anne Jacobi,Thanh-Phong Lam,Omar-Alexander Al-Hujaj,Kathrin Nos +8 more
- 16 Dec 2016
TL;DR: In this paper, a selection of data types is defined from available log data for an evaluation of events associated with an entity, one or more evaluations associated with the entity are defined and reference data is generated from the selection of the data types based on the defined evaluations.
14
Patent
Real-time push API for log events in enterprise threat detection
Florian Chrosziel,Thomas Kunz,Kathrin Nos,Marco Rodeck +3 more
- 23 Sep 2016
TL;DR: In this paper, a log entry is received at a streaming component of an enterprise threat detection (ETD) system from a real-time push application programming interface (API) associated with a backend computing system.
13
References
Patent
Log collection, structuring and processing
Phillip Villella,Chris Petersen +1 more
- 13 Nov 2006
TL;DR: In this article, a log manager collects such log data using various protocols (e.g., Syslog, SNMP, SMTP, etc.) to determine events and transfer the events to an event manager.
559
Patent
Active network defense system and method
Craig Cantrell,Marc Willebeek-LeMair,Dennis Cox,John F. McHale,Brian Smith,Donovan Kolbly +5 more
- 07 Nov 2003
TL;DR: In this paper, an active network defense system is provided that is operable to monitor and block traffic in automated fashion, which is placed in-line with respect to the packet traffic data flow as a part of the network infrastructure.
484
Patent
Method and apparatus for estimating a geographic location of a networked entity
Mark Anderson,Ajay Bansal,Brad Doctor,George Hadjiyiannis,Christopher Herringshaw,Eli E. Karplus,Derald Muniz +6 more
- 03 Apr 2001
TL;DR: In this article, a method and an apparatus operates to associate a geographic location associated with a network address, where the retrieved information is processed to identify a plurality of geographic locations potentially associated with the network address.
422
Patent
Real time monitoring and analysis of events from multiple network security devices
Hugh S. Njemanze,Pravin S. Kothari +1 more
- 02 Dec 2002
TL;DR: In this paper, security events generated by a number of network devices are gathered and normalized to produce normalized security events in a common schema, which are cross-correlated according to rules to generate meta-events.
375
Patent
Dynamic risk management
Pradeep Bahl
- 06 Feb 2007
TL;DR: In this paper, a dynamic risk management system for operating systems that provides monitoring, detection, assessment, and follow-up action to reduce the risk whenever it rises is presented, which enables an operating system to protect itself automatically in dynamic environments.
374
Related Papers (5)
Yaniv Karta,Itzhak Avraham +1 more
- 13 May 2013
Sergei Shevchenko
- 15 Nov 2006
Tsvetomir Iliev Tsvetanov
- 14 Aug 2007