| 摘要 |
<p><P>PROBLEM TO BE SOLVED: To realize a method for finding abnormality from minimum information searches and investigating data of an original packet capture step by step therefrom with regard to data containing a quantity of packet captures. <P>SOLUTION: A communication log acquisition and accumulation mechanism for acquiring data from a packet capture and storing the data in cumulative log data, and a log extraction/classification mechanism for extracting required data from the cumulative log data and distributing the extracted data into data related to data communication, data related to communication confirmation and data related to routing in response to a purpose, are included. Particularly, the log extraction/classification mechanism reads the data related to data communication and distributes the read data into data of a service provision type and data of a service request type. A data indexing mechanism for registering said data in a database uses a port number access definition and a count recording area to count communication packets and write out the data in a rearranged port number count file. <P>COPYRIGHT: (C)2005,JPO&NCIPI</p> |
