Operation behavior recording method and system applied to operation behavior auditing system
A technology for recording methods and behaviors, applied in computing, computer security devices, instruments, etc., can solve the problems of low search efficiency, occupying system administrator time, and occupying storage space, so as to achieve efficient retrieval, reduce the number of records, and reduce the occupied space Effect
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
Method used
Image
Examples
Embodiment 1
[0076] The violation rule definition module adopts the rule definition of the content level, that is: for the rule definition of the content, for SecureCRT, Putty, etc., linux, unix system maintenance tools, carry out the rule definition of the executed command level, and then bind the defined rules to On the linux account, and the audit policy defined for the linux account is: when a violation occurs, record the title metadata, the content of the application window, and the video frame when the operation occurs; and when a non-violation occurs, only record the title metadata Data, application window content. The results show that the system automatically records the title metadata, the content of the application window, and the video frame when the operation behavior occurs only when the command that violates the rules appears; content.
Embodiment 2
[0078] For applications that do not need to record operation content, such as browsers, when defining rules, only the rule definition of title metadata is performed. For example, certain web browsing behaviors are violations of an account. When defining the audit policy, it is still adopted: when a violation occurs, record the title metadata, the content of the application window, and the video frame when the operation behavior occurs; and when a non-violation occurs, only record the title metadata and the content of the application window . The results show that the invention can significantly reduce storage space and recorded audit data entries.
[0079] It can be seen that the operation behavior recording method and system applied to the operation behavior audit system provided by the present invention, since the operation behavior is fine-grained to judge whether a certain behavior content violates the regulations, and defines the occurrence of violations and non-violation...
PUM
Abstract
Description
Claims
Application Information
- R&D Engineer
- R&D Manager
- IP Professional
- Industry Leading Data Capabilities
- Powerful AI technology
- Patent DNA Extraction
Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.
© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com