LogLogic | Log, Change, Database, & Security Event Management

You have serious enterprise logging concerns, and you are tired of SEM / SIM / SIEM products that do not do the job of finding and sifting through syslog and other logging alert messages. Maybe you even have long-term archiving or compliance concerns. If you are looking to get enterprise reports and a solution in place in minutes versus months, then you are ready for a LogLogic solution from Altaware, Inc.

So, what is SIEM? What is the difference between SIM, SEM and SIEM? With LogLogic, you address both and build it upon a strong SIM foundation.

LogLogic offers solutions for:

Log Management
Compliance Management
Security Event Management
Database Security Management

SIEM - Security Information and Event Management

SIM - Foundation

Data Collection & Storage
Searching and Reporting
IT Management
Compliance
Alerting
High Speed Indexed Searches
Long Term Storage Retention
Hardware or virtual appliance

SEM - Visualization

Incident Management
Correlated Alerting
Security Reporting
Dashboards
Trending
Baseline Comparisons
Analytics Engine
Analysis based on current / recent data

Deploy SIM before you deploy SEM! SIM is the foundational work of collecting all the tracking data. Whether it is system logs, database logs or flow data. It needs to be consolidated and then massaged to become useful data for doing searching and alerting.

Compliance suites available for:

SOX / COBIT
HIPAA
ISO
NERC
PCI
Also use for HITECH, FISMA, GLBA, ITIL

The LogLogic solution suites include the LogLogic ST family that provides a simple, secure solution for long-term log data retention and search that can either leverage your existing NAS and WORM storage devices or provide up to 34 terabytes of on-board storage. The LogLogic LX family is a robust appliance-based technology that collects and analyzes security and system log event data for unusual activity and policy breaches.

Accelerate the implementation of COBIT and ITIL controls to improve IT operations. Whether you are looking for log analysis, log file management, or the world’s fastest log processing and search engine for log data, LogLogic is the undisputed leader. Log sources can include servers, databases and most anything else via APIs.

LogLogic Database Security Manager >>>

Get

See

Get

The Universal Collection Framework™ (UCF) leverages a new transport and store protocol that we intend to open source in the near future. Built on the innovative Universal Lossless Data Protocol (ULDP), it provides WAN support for IT infrastructure data, including logs, SNMP, network flow, etc. Instead of simply sending the data (syslog UDP) or waiting for acknowledgement of receipt (syslog TCP), the UCF waits for an acknowledgement that data has been committed to stable storage. The protocol allows for a delayed acknowledgement of data, so that the transfer of data can be pipelined (critical for WANs which can have long response times). LogLogic provides universal IT data collection technology capable of collecting, without agents, from just about anywhere. When agents are needed for those hard to reach places like HP Integrity NonStop machines, or novel widgets, they have them. LogLogic provides specialized technology for capturing database activity without the need for you to turn on costly auditing. All of this technology is vertically scalable to suit data centers of any size. It is also the world’s only schedulable WAN-aware, store-and-forward technology capable of adapting to time-zones, compensating for unstable pipes and protecting your data from unauthorized viewers. They also publish open API’s so that you can add to this framework if you wish.

See

The LogLogic high capacity IT data warehouse: structures unstructured data, enriches basic information, and virtualizes physical characteristics. Simply put - it provides insight. By using our unique auto identification technology, coupled with our contextual enrichment features and our customizable taxonomy, you’ll see patterns and activity that you never thought possible. The cornerstone of LogLogic flexibility is Log Labels. This is the first enterprise-class data description technology that allows any text-based data to be intelligently structured, masking the intricacies of IT data. With Log Labels, you can now auto-identify, parse and centrally manage IT data from any device or application, providing you with unique visibility across your entire system. Of course any real data warehouse plays nicely with your corporate infrastructure, and that’s they introduced the world’s first SAN-enabled Log Appliance back in December. It’s also why they offer one of the only open forwarding technologies in the industry. And naturally, they publish open API’s so that you can extend our platform in ways we’ve yet to dream of.

Use

LogLogic solutions are used for hundreds of different reasons throughout the entire span of the Global 2000 enterprise list. They offer products for compliance, forensics, threat correlation, operational optimization and troubleshooting, security operations centers, and so many other practical applications, limited only by your imagination and ingenuity. LogLogic solutions offer flexibility that sees them deployed for reasons that constantly innovate and amaze. Extensive efficiency workflow research has led to the creation of a new task-centric management interface that dramatically reduces the time you’ll spend on remediation, discovery and management. As you would expect, if you don’t like it, you can always extend, adapt or rebuild it using our published open API’s.

Download HIPAA Compliance info >>
Download SOX and COBIT compliance info >>
Download PCI compliance info >>
Download MX Product Family info >>