发明名称 INTERNAL NETWORK MANAGEMENT SYSTEM, INTERNAL NETWORK MANAGEMENT METHOD, AND PROGRAM
摘要 A relay apparatus log analysis apparatus 132 periodically receives log data from a relay apparatus 112, when detecting a traffic abnormality, an abnormality detection apparatus 131 notifies the IP address of a terminal device that has caused the abnormality to the relay apparatus log analysis apparatus 132, the relay apparatus log analysis apparatus 132 analyzes traffic information generated by a router apparatus 121 to identify a time when the traffic abnormality has occurred, the relay apparatus log analysis apparatus 132 analyzes the log data, based on the occurrence time of the traffic abnormality and the IP address of the terminal device that has caused the abnormality, identifies an address accessed by the terminal device, regards the identified address as the destination from the malware, and sets the relay apparatus 112 so as to block a packet to the address.
申请公布号 US2012005743(A1) 申请公布日期 2012.01.05
申请号 US201113074475 申请日期 2011.03.29
申请人 KITAZAWA SHIGEKI;FUJII SEIJI;SAIGA YOSHIHARU;YAHAGI KOICHI;NAKANO TAKAAKI;KATO TAKAYA;MITSUBISHI ELECTRIC CORPORATION;THE BANK OF TOKYO-MITSUBISHI UFJ, LTD.;MITSUBISHI ELECTRIC INFOR. NETWORK CORP. 发明人 KITAZAWA SHIGEKI;FUJII SEIJI;SAIGA YOSHIHARU;YAHAGI KOICHI;NAKANO TAKAAKI;KATO TAKAYA
分类号 G06F21/20;G06F15/16 主分类号 G06F21/20
代理机构 代理人
主权项
地址