logo

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 8667121 B1

PDFFull Text
Date of Patent:
Mar. 04, 2014

Filed:

Mar. 25, 2009

System and method for managing data and policies

Applicants:

Ratinder Paul Singh Ahuja, Saratoga, CA (US);

Joel Christener, San Jose, CA (US);

Jitendra Gaitonde, Cupertino, CA (US);

Sirisha Ganti, Sunnyvale, CA (US);

Sridevi Haridasa, San Jose, CA (US);

Damodar K. Hegde, Cupertino, CA (US);

Chaitra Jayaram, Sunnyvale, CA (US);

Rahila Kasim, Santa Clara, CA (US);

Faizel Lakhani, Campbell, CA (US);

Swati Patil, Sunnyvale, CA (US);

Harsimran S. Sandhu, Mountain View, CA (US);

Inventors:

Ratinder Paul Singh Ahuja, Saratoga, CA (US);

Joel Christener, San Jose, CA (US);

Jitendra Gaitonde, Cupertino, CA (US);

Sirisha Ganti, Sunnyvale, CA (US);

Sridevi Haridasa, San Jose, CA (US);

Damodar K. Hegde, Cupertino, CA (US);

Chaitra Jayaram, Sunnyvale, CA (US);

Rahila Kasim, Santa Clara, CA (US);

Faizel Lakhani, Campbell, CA (US);

Swati Patil, Sunnyvale, CA (US);

Harsimran S. Sandhu, Mountain View, CA (US);

Assignee:

McAfee, Inc., Santa Clara, CA (US);

Attorney:

Patent Capital Group

Primary Examiner:

Douglas Blair

Assistant Examiner:

Benjamin Ailes

Int. Cl.
CPC ...
G06F 15/173 (2006.01); G06F 15/177 (2006.01);
U.S. Cl.
CPC ...
Abstract

In one embodiment, a method is provided and includes capturing a plurality of packet streams, recreating a plurality of flows from the packet streams, and analyzing the flows to identify one or more incidents. The incidents identify one or more pieces of data. The incidents are filtered and the incidents are rendered on a display for an end user that initiated the filtering operation. In other embodiments, the display allows the end user to view a selected one of a group of attributes for the incidents. The display allows the end user to open a captured object associated with a specific incident. In still other embodiments, the display allows a user to filter the incidents using a selected one of a group of group options such as content, destination IP, destination location, destination port, filename, host IP, etc.

Find Patent Forward Citations

Loading…