Some content of this application is unavailable at the moment.
If this situation persist, please contact us atFeedback&Contact
1. (WO2019043804) LOG ANALYSIS DEVICE, LOG ANALYSIS METHOD, AND COMPUTER-READABLE RECORDING MEDIUM
Latest bibliographic data on file with the International Bureau    Submit observation

Pub. No.: WO/2019/043804 International Application No.: PCT/JP2017/031041
Publication Date: 07.03.2019 International Filing Date: 30.08.2017
IPC:
G06F 21/55 (2013.01)
G PHYSICS
06
COMPUTING; CALCULATING; COUNTING
F
ELECTRIC DIGITAL DATA PROCESSING
21
Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
50
Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
55
Detecting local intrusion or implementing counter-measures
Applicants:
日本電気株式会社 NEC CORPORATION [JP/JP]; 東京都港区芝五丁目7番1号 7-1, Shiba 5-chome, Minato-ku, Tokyo 1088001, JP
Inventors:
高橋 佑典 TAKAHASHI Yusuke; JP
Agent:
下坂 直樹 SHIMOSAKA Naoki; JP
Priority Data:
Title (EN) LOG ANALYSIS DEVICE, LOG ANALYSIS METHOD, AND COMPUTER-READABLE RECORDING MEDIUM
(FR) DISPOSITIF D'ANALYSE DE JOURNAL, PROCÉDÉ D'ANALYSE DE JOURNAL ET SUPPORT D'ENREGISTREMENT LISIBLE PAR ORDINATEUR
(JA) ログ分析装置、ログ分析方法及びコンピュータ読み取り可能記録媒体
Abstract:
(EN) Provided is a log analysis device which makes it easy to distinguish types of cyber attack, for example, to distinguish between automated and manual attacks. This log analysis device is provided with: an extraction means which extracts attack type related information from a communication log associated with an attack; and a determination means which determines the type of the attack associated with the log, on the basis of the attack type related information and on the basis of determination rules set for each type of attack. The extraction means extracts, as the attack type related information, information relating to time, information relating to data size, and information relating to keyboard input.
(FR) L'invention concerne un dispositif d'analyse de journal qui permet de distinguer facilement des types de cyberattaques, par exemple de distinguer des attaques automatiques et manuelles. Ce dispositif d'analyse de journal comprend : un moyen d'extraction qui extrait des informations relatives au type d'attaque à partir d'un journal de communication associé à une attaque ; et un moyen de détermination qui détermine le type de l'attaque associée au journal d'après les informations relatives au type d'attaque et les règles de détermination définies pour chaque type d'attaque. Le moyen d'extraction extrait, en tant qu'informations relatives au type d'attaque, des informations concernant le temps, des informations relatives à la taille des données ainsi que des informations relatives à la saisie du clavier.
(JA) サイバー攻撃における攻撃種類の判別、例えば自動攻撃であるか手動攻撃であるかの判別を容易にするログ分析装置を提供する。ログ分析装置は、攻撃に関連する通信のログから、攻撃の種別に関係のある情報を抽出する抽出手段と、攻撃の種別に関係のある情報と、攻撃の種別に応じた判定ルールとに基づいて、ログに関連する攻撃の種別を判定する判定手段と、を備える。前記抽出手段は、攻撃の種別に関係のある情報として時間に関する情報、データの大きさに関する情報、キーボードからの入力に関する情報を抽出する。
front page image
Designated States: AE, AG, AL, AM, AO, AT, AU, AZ, BA, BB, BG, BH, BN, BR, BW, BY, BZ, CA, CH, CL, CN, CO, CR, CU, CZ, DE, DJ, DK, DM, DO, DZ, EC, EE, EG, ES, FI, GB, GD, GE, GH, GM, GT, HN, HR, HU, ID, IL, IN, IR, IS, JO, JP, KE, KG, KH, KN, KP, KR, KW, KZ, LA, LC, LK, LR, LS, LU, LY, MA, MD, ME, MG, MK, MN, MW, MX, MY, MZ, NA, NG, NI, NO, NZ, OM, PA, PE, PG, PH, PL, PT, QA, RO, RS, RU, RW, SA, SC, SD, SE, SG, SK, SL, SM, ST, SV, SY, TH, TJ, TM, TN, TR, TT, TZ, UA, UG, US, UZ, VC, VN, ZA, ZM, ZW
African Regional Intellectual Property Organization (ARIPO) (BW, GH, GM, KE, LR, LS, MW, MZ, NA, RW, SD, SL, ST, SZ, TZ, UG, ZM, ZW)
Eurasian Patent Office (AM, AZ, BY, KG, KZ, RU, TJ, TM)
European Patent Office (EPO) (AL, AT, BE, BG, CH, CY, CZ, DE, DK, EE, ES, FI, FR, GB, GR, HR, HU, IE, IS, IT, LT, LU, LV, MC, MK, MT, NL, NO, PL, PT, RO, RS, SE, SI, SK, SM, TR)
African Intellectual Property Organization (BF, BJ, CF, CG, CI, CM, GA, GN, GQ, GW, KM, ML, MR, NE, SN, TD, TG)
Publication Language: Japanese (JA)
Filing Language: Japanese (JA)