Management of logs
Download Data Sheet: Log management
Innovae uses SIEM enVision (log management platform) of RSA
What is the SIEM platform?
It is a computing tool for use in a data network for centralizing storage and for registering and interpreting events occurring during the execution of software in the network.
A neighbouring, if somewhat different, market exists for managing the registers, although the two fields are closely related. The management of registers, in general, deals with the collection and storage of data, whereas SEM deals with the analysis of the data.
Many systems and applications which execute in a computing network generate events which are annotated in the registers of events.
These registers, essentially, are lists of activities in the order in which they occur.
Protocols, such as Syslog and SNMP, may be used to communicate these events, as they occur, for input to software which may not reside in the same machine as that in which they occur.
EnVsion provides for the flexible interaction of communication protocols to allow for the compilation of the widest range of events.
Methods used in the the capture of data:
- Data are captured without the use of agents
- Data are captured in the raw
- Universal Device Support is used (UDS)
Methods of data analysis:
- Events are viewed in the raw
- Advanced correlation and alerting of events
- Reporting mechanism
- Analysis of Base lines
Para más información pulse aquí