IDS mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Experience security-information-management

From: "etrust_scm" <etrust_scm () fibertel com ar>
Date: Mon, 14 Nov 2005 23:17:37 -0300
Check for CA etrust audit or etrust security command center. 
www.ca.com


-----Mensaje original-----
De: klaus.dombrofsky () degussa com [mailto:klaus.dombrofsky () degussa com] 
Enviado el: Lunes, 14 de Noviembre de 2005 06:18 a.m.
Para: focus-ids () securityfocus com
Asunto: Experience security-information-management

Hi folks,

Has anyone already experiences with  a security-information-tool  like 
ArcSight/Open Service or similar ?
We plan to evaluate  systems, which are able to read  different logfiles ( 
ids, firewall, ..... ) to extract possible relations to find possible
intrusion-trials.
At the moment i see tons of logfiles, which can not be checked anymore and 
i cannot imagine that a tool is able to check these files AND is able to 
find 
valuable informations and relations.
Maybe someone of you already has positive or negative experiences.
Or there are important points, which should be checked in an evaluation.

Klaus

------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 
to learn more.
------------------------------------------------------------------------


------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 
to learn more.
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: