Multidimensional Event Correlation Analysis Method

An event correlation and analysis method technology, applied in the field of multi-dimensional event correlation analysis, can solve the problems of low query performance, data return time can not achieve second-level response, etc., to achieve the effect of meeting the needs of forensics

Active Publication Date: 2022-02-22
THE THIRD RES INST OF MIN OF PUBLIC SECURITY
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Since there are hundreds of millions of event storage entries, the query performance is reduced, and the data return time cannot be less than a second-level response

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Multidimensional Event Correlation Analysis Method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0028] In order to make the techniques of the present invention, the creation characteristics, the purpose and efficacy are easy to understand, and the present invention is further illustrated in connection with the specific illustration.

[0029] This example is directed to suspicious events, using an efficient retrieval engine, quickly enabling events related to suspicious events, making it easy to discover the relationship between events between analysts.

[0030] The event retrieval here is the process of querying the event; the conditions for event retrieval include event type, scene type, time, keyword; event search results show the list of lists, click a time to view details.

[0031] This example utilizes multiple dimensionally associated fields and table design, and then stores data based on search engine technology to achieve efficient search output.

[0032] In order to facilitate data search, the multi-dimensional data table design is created, which is multi-dimensiona...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a multi-dimensional event association analysis method, which uses a search engine to list events related to suspicious events from multiple dimensions. The solution provided by the present invention creatively uses an efficient search engine for suspicious events, and quickly lists related events through multiple dimensions (IP address, port, time, etc.), so as to facilitate the discovery of the relationship between events, and Track and trace related events.

Description

Technical field [0001] The present invention relates to event search techniques, and specifically involves multi-dimensional event association analysis techniques. Background technique [0002] Using high-performance search engines for fast event retrieval, it is already an indispensable means in people's work. A combination of multiple conditions including source addresses, source ports, destination addresses, destination ports, time ranges, event levels, and event categories, etc. can be used. [0003] When the data query time interval is relatively large, data is within one year. Due to the billion meter of the event storage bar, the data return time cannot be done in the second level response. Inventive content [0004] For problems existing for existing suspicious events, there is a need for efficient and accurate event association analysis schemes. [0005] To this end, an object of the present invention is to provide a multi-dimensional event association analysis method f...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): G06F16/9535G06F16/22G06F16/2458
CPCG06F16/2264G06F16/2282G06F16/951
Inventor 陶源李明
Owner THE THIRD RES INST OF MIN OF PUBLIC SECURITY
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap