A system with accompanying method and computer program product are provided for database management and recovery. Included are information source modules for collecting network communications usage information in real-time from a plurality of network devices. Also included is a plurality of gatherers coupled to the information source modules. The gatherers are adapted for filtering and aggregating the network communications usage information. A central event manager is coupled to the gatherers for completing a plurality of data records from the filtered and aggregated network communications usage information. Such data records correspond to network usage by a plurality of users. A database is coupled to the central event manager for storing the data records. Further provided is logic for continuously monitoring a state of the gatherers, detecting a fault, and utilizing the state of the gatherers and the stored data records to recover from the fault upon the detection thereof.
COPYRIGHT NOTICE
This application is a continuation of the application Ser. No. 09/442,876, which was filed on Nov. 18, 1999, issued as U.S Pat. No. 6,418,467 B1 on Jul. 9, 2002.
A portion of the disclosure of this patent document contains materials that are subject to copyright protection. The copyright owner has no objection to the facsimile reproduction by anyone of the patent disclosure, as it appears in the Patent and Trademark Office patent, files or records, but otherwise reserves all copyright rights whatsoever.
This present application claims a continuation of the U.S. Pat. No. 6,418,467 B1, which is a continuation of and claims priority of a PCT application filed Nov. 20, 1998 under Ser. PCT/US98/24963, a first provisional patent application filed Nov. 20, 1997 under Ser. 60/066,898, and a second provisional patent application filed Nov. 19, 1998 under Ser. 60/109,095.
A method for collecting log information relating to specific processing from pieces of log information for integration is disclosed. Session information, which is given every time log information is processed and included in the log information held by a server, is recorded in a session-information management table. In addition, how session information associates with others among different pieces of log information is recorded in a session-information association table. Recursively searching the session-information association table by use of session information specified by a user through a target log entry input unit enables identification of a set of session information relating to the processing to which the user pays attention. Information corresponding to each of the session information related is collected from log information, and is integrated according to the recorded data and time of a log.
A method for collecting log information relating to specific processing from pieces of log information for integration is disclosed. Session information, which is given every time log information is processed and included in the log information held by a server, is recorded in a session-information management table. In addition, how session information associates with others among different pieces of log information is recorded in a session-information association table. Recursively searching the session-information association table by use of session information specified by a user through a target log entry input unit enables identification of a set of session information relating to the processing to which the user pays attention. Information corresponding to each of the session information related is collected from log information, and is integrated according to the recorded data and time of a log.
A system of the invention comprises first and second computers. The first computer retrieves and incorporates its security state data in a message requesting a network connection with the second computer. The second computer receives the message and determines whether its security policy data permits connection with the first computer given the security state of the first computer as indicated by its security state data. The security state data can comprise data indicating whether an anti-virus application, firewall application, or operating system are running on the first computer, and are up-to-date. If so, the second computer permits the network connection to proceed. If not, then the second computer either drops the connection request or terminates the connection request by transmitting a disconnection message to the first computer. The invention also comprises related apparatuses, methods, and computer-readable media.
An information acquiring unit checks operation command information issued to the multiple information processing apparatuses over the network in order to understand the totality of the operation command information in the network. The state of utilization of each information processing apparatus is analyzed based on the operation command information. Where a utilization state analyzing unit is provided in an information processing apparatus, the utilization state analyzing unit also checks the state of utilization of its own information processing apparatus. Prompt information that prompts the issuance of operation commands to an underutilized information processing apparatus is then issued. Consequently, the level of utilization of that information processing apparatus may be increased.
The disclosed system, apparatuses, methods, and computer-readable media can be used by a computer to establish the security status of another computer before establishing a network connection to it. Responsive to a request message, security state data indicating this status can be incorporated into a response message as one of the first few packets exchanged by computers to establish a network connection. This enables a computer to determine whether the other computer's security status is compliant with its security policy before establishing the network connection, reducing risk of infection by a virus, worm, or the like.
