VMware VCLOUD REQUEST MANAGER 1.0.0 Guida Utente Scaricare il pdf (Pagina 5)

Technical white paper

Key Benefits

• A cost-effective solution for all your regulatory compliance needs

• Automated log collection and archiving

• Fraud and Real-time threat detection

• Forensic analysis capabilities for cyber security

• Detect threats early using timely reputation data with HP RepSM

HP ArcSight Logger

With HP ArcSight Logger you can improve everything from compliance and risk management, security intelligence and IT

operations to efforts that prevent insider and advanced persistent threats. This universal log management solution collects

machine data from any log-generating source and unifies the data for searching, indexing, reporting, analysis, and

retention. And in the age of Bring Your Own Device (BYOD) and mobility, it enables you to comprehensively manage an

increasing volume of log data from an increasing number of sources.

Key features

• Collect logs from any log generating source through 300+ connectors from any device and in any format

• Unify data across IT through normalization and categorization, into a common event format (CEF registered)

• Search through millions of events using a text-based search tool with a simple interface

• Store years' worth of logs and events in a unified format through a high compression ratio at low cost

• Automate analysis, alerting, reporting, intelligence of logs and events for IT security, IT operations, IT Governance Risk

Management and Compliance (GRC) , and log analytics

HP ArcSight Connectors

HP ArcSight Connectors solve the problem of managing log records in hundreds of different formats. While the HP ArcSight

SIEM Platform can collect log records in native formats, HP ArcSight Connectors provide normalization to a common format,

which greatly improves reporting and analysis. By normalizing all events into one common event taxonomy, HP ArcSight

Connectors decouple analysis from vendor selection. This approach has four significant advantages:

Centrally manage 300+ connectors through HP ArcSight Connector Appliance (ConApp)

HP ArcSight Connector appliance manages the ongoing updates, upgrades, configuration changes and administration of a

distributed log collection deployment through a simple and centralized web-based interface. ConApp can be deployed both

as an appliance and software.

Future proofing

If a Cisco router is swapped for a Juniper router or if a new SQL database is added to a network that previously only had

Oracle, no reporting or rules changes are required and the organization retains continuous visibility into all activity.

Ease of analysis

The HP ArcSight common event format eliminates the need for end users to be familiar with hundreds of different log

syntaxes across products. As a result, non-technical line of business users can easily conduct analysis on their own,

reducing the burden on IT.

Universal content relevance

With the HP ArcSight normalized format, a report that shows “authentication failures” will cover every system automatically,

even though one application may refer to authentication failures with a specific event ID while a database refers to the same

as an “unsuccessful login.”

This unique architecture is supported across hundreds of commercial products out-of-the-box as well as legacy systems.

HP ArcSight Connectors also offer various audit quality controls including secure, reliable transmission and bandwidth

controls. In addition to software-based deployments, HP ArcSight Connectors are available in a range of plug-and-play

appliances that can cost-effectively scale from small store or branch office locations to large data centers. Connector

appliances enable rapid deployment and eliminate delays associated with hardware selection, procurement and testing.

1 2 3 4 5 6 7 8 9 10 ... 38 39

Commenti su questo manuale

Nessun commento

VMware VCLOUD REQUEST MANAGER 1.0.0 Guida Utente Pagina 5

Commenti su questo manuale

Prodotti e manuali riguardandi Networking VMware VCLOUD REQUEST MANAGER 1.0.0