摘要 |
PROBLEM TO BE SOLVED: To inform a security manager of a really urgent unauthorized access among detected unauthorized accesses in security management for a network. SOLUTION: An unauthorized access log data acquiring part 11 acquires unauthorized access log data from an unauthorized access log file 22. After analysis processing in an unauthorized access log data analyzing and processing part 12, a diagnostic result collating and processing part 14 determines vulnerability of an object segment of the unauthorized access, which is notified to be high in an alarm level in the unauthorized access log data, based on a signature diagnosis correspondence table stored in a signature diagnosis correspondence table storing part 15 and a security diagnostic result table stored in a security diagnostic result table storing part 16. The alarm level is adjusted based on the determination result of the vulnerability, so that an alarm level adjusting part 17 performs alarm notification according to the alarm level after adjustment. COPYRIGHT: (C)2005,JPO&NCIPI |