High-performance log and behavior auditing system

A high-performance, log technology, applied in transmission systems, digital transmission systems, computing, etc., can solve the problems of a single data volume, collection, analysis and storage cannot be completely independent, large and fast retrieval, etc., to achieve the effect of easy expansion

Active Publication Date: 2010-10-13
杭州思福迪信息技术有限公司
View PDF4 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, for environments with large amounts of data such as logs and behaviors, the application of such a platform often cannot meet the performance requirements in terms of collection, analysis, and retrieval.
The reasons are: 1. For the server, in order to meet the needs of business and stability, many services and daemons are running, but most of these services and daemons are unnecessary for audit applications; 2. For general As far as the relational database is concerned, in addition to providing data storage and query, it also needs to provide a lot of data correlation functions, so it cannot satisfy the fast retrieval of a single data relationship but a huge amount of data in the audit; 3. Often developed applications, Acquisition, analysis, and storage cannot be completely independent, making it difficult to apply once a bottleneck occurs on a certain module

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • High-performance log and behavior auditing system
  • High-performance log and behavior auditing system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment

[0011] Example: see figure 1 , the main body of the system of the present invention adopts a three-layer design of data collection layer, data analysis layer and data storage retrieval layer, TCP encrypted transmission is adopted between each layer, and each layer can be expanded independently, thereby improving the performance of a single layer.

[0012] Among them, the data acquisition layer adopts PCI-E network interface industrial control board, equipped with INTEL dual-core CPU, DDRII memory and DOM disk. Trim the Linux kernel, leaving only necessary drivers and modules. Make a boot image, and make the system run completely in memory after booting to speed up the system. The acquisition program works in this layer and adopts zero-copy technology. In the early stage of data acquisition, most of the useless data is filtered to reduce the pressure of analysis and copying. The collected data is formatted into a unified structure and transmitted to the data analysis layer th...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a high performance log and a behaviour audit system, main body of the system uses the three-layer structure composed by a data collecting layer, a data analyzing layer and a data storing and searching layer; the three layers uses TCP encryption transmission, each of them can be independently expanded, which enhances the performance of one layer. The invention is completelybased on an embedded system, and performs pertinent optimization to software and hardware in terms of collection; the invention uses special software and hardware interface and arithmetic in storing and searching the log and behavioural data, keeps independence in designing the modules for the purpose of expansion, therefore the bottleneck will not happen to the single module.

Description

technical field [0001] The invention belongs to the field of log and behavior auditing, in particular to a high-performance log and behavior auditing system. Background technique [0002] The current log and behavior audit system mainly uses linux / unix or Windows servers to build a system platform by using a general-purpose relational database when collecting, analyzing and storing data, and further develops data collection, analysis and storage on this platform. Applications. However, for an environment with a large amount of data such as logs and behaviors, the application of such a platform often cannot meet the performance requirements in terms of collection, analysis, and retrieval. The reasons are: 1. For the server, in order to meet the needs of business and stability, many services and daemons are running, but most of these services and daemons are unnecessary for audit applications; 2. For general As far as the relational database is concerned, in addition to prov...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L12/24G06F17/30
Inventor 黄艺海
Owner 杭州思福迪信息技术有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap