RE: Experience security-information-management

From: etrust_scm (etrust_scm_at_fibertel.com.ar)
Date: 11/15/05

  • Next message: ADT: "Re: Intrusion Prevention requirements document" 
    To: <focus-ids@securityfocus.com>
Date:	Mon, 14 Nov 2005 23:17:37 -0300

    Check for CA etrust audit or etrust security command center.
    www.ca.com

    -----Mensaje original-----
    De: klaus.dombrofsky@degussa.com [mailto:klaus.dombrofsky@degussa.com]
    Enviado el: Lunes, 14 de Noviembre de 2005 06:18 a.m.
    Para: focus-ids@securityfocus.com
    Asunto: Experience security-information-management

    Hi folks,

    Has anyone already experiences with a security-information-tool like
    ArcSight/Open Service or similar ?
    We plan to evaluate systems, which are able to read different logfiles (
    ids, firewall, ..... ) to extract possible relations to find possible
    intrusion-trials.
    At the moment i see tons of logfiles, which can not be checked anymore and
    i cannot imagine that a tool is able to check these files AND is able to
    find
    valuable informations and relations.
    Maybe someone of you already has positive or negative experiences.
    Or there are important points, which should be checked in an evaluation.

    Klaus

    ------------------------------------------------------------------------
    Test Your IDS

    Is your IDS deployed correctly?
    Find out quickly and easily by testing it
    with real-world attacks from CORE IMPACT.
    Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
    to learn more.
    ------------------------------------------------------------------------

    ------------------------------------------------------------------------
    Test Your IDS

    Is your IDS deployed correctly?
    Find out quickly and easily by testing it
    with real-world attacks from CORE IMPACT.
    Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
    to learn more.
    ------------------------------------------------------------------------

  • Next message: ADT: "Re: Intrusion Prevention requirements document"

    Relevant Pages

    • RE: Computer Associates eTrust Security Command Center Multiple Vulnerabilities
      ... aushack.com - Vulnerability Advisory ... Computer Associates - eTrust Security Command Center ... vulnerable to external replay attacks, ...
      (Bugtraq)
    • 11th ACM Computer and Communications Conference I&GT Call for Proposals
      ... experiences in security product development and deployment of products ... to meet system security goals. ... we solicit panel and presentation proposals. ...
      (sci.crypt)
    • Re: Home network architecture
      ... Any experiences of doing so with ... Virtual Private Servers as explained here http://www.linuxjournal.com/article/8337? ... Don't think it would add much to security. ... The knack lies in learning how to throw yourself at the ground and miss. ...
      (comp.os.linux.networking)
    • SecurityExpressions from Pedestal Software
      ... I am interested in receiving feedback on experiences using ... I have read the reviews by Network Computing, Information Security and SC ... I am interested in real life experiences. ... This e-mail message and any attachmentto it are intended only for the ...
      (Pen-Test)
    • Re: SIM Products
      ... are you talking about security information management (security logs, correlations, ... look at Computer Associates eTrust Security command center or etrust Audit. ... Subject: SIM Products ... Mail has the best spam protection around ...
      (Security-Basics)
    • Quantcast