Saturday, October 04, 2003

SRI Patent on "Hierarchical event monitoring and analysis"

I was doing research for my book "The Tao of Network Security Monitoring" and learned SRI was awarded a patent on 19 Nov 02 for "Hierarchical event monitoring and analysis." It's patent 6,484,203 and says:

"A computer-automated method of hierarchical event monitoring and analysis within an enterprise network including deploying network monitors in cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 enterprise network, detecting, by cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 network monitors, suspicious network activity based on analysis of network traffic data selected from cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 following categories: {network packet data transfer commands, network packet data transfer errors, network packet data volume, network connection requests, network connection denials, error codes included in a network packet}, generating, by cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 monitors, reports of cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 suspicious activity, and automatically receiving and integrating cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 reports of suspicious activity, by one or more hierarchical monitors."

I thought this was alarming until I started browsing through cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 linked patents and found just about everything under cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 sun has been patented. How can SRI or anyone expect a patent like this to withstand scrutiny, since anyone can point to Marty's 1999 LISA talk on Snort as prior art, or Todd Heberlein's 1990 paper on network security monitoring?

No comments: