摘要 |
PROBLEM TO BE SOLVED: To provide a device capable of automatically determining the presence/absence of system damage due to illicit access for greatly improving the efficiency of investigation and separation work putting a burden on a system administrator. SOLUTION: This damage determination device determining whether the analysis of damage, which is caused in a monitoring objective system by the illicit access, is necessary or not is provided with a storage means storing illicit attack information, which includes a damage analysis result on at least the monitoring objective system, for each illicit access phenomenon and a damage determination means receiving illicit access detection information and determining whether a damage analysis on the monitoring objective system is necessary or not according to the received illicit access detection information and illicit attack information stored in the storage means. COPYRIGHT: (C)2004,JPO
|