fhs
Volume 9, Number 1 -- January 6, 2009

LogRhythm Debuts New 'Intelligent' IT Search

Published: January 6, 2009

by Alex Woodie

LogRhythm, a developer of security information event management (SIEM) solutions that support i OS (via a partnership with PowerTech), recently debuted a new feature that seeks to make it easier to piece together events recorded in server logs. Dubbed "intelligent IT search," the new feature combines several techniques to enable IT and security managers to cut through the clutter and find the veritable needle of data in the log haystack.

Log data is notoriously difficult to decipher and understand, and i OS is no different than Unix or Windows in this regard. Correlating events occurring across different platforms can become a difficult and time-consuming enterprise, and hinder attempts to enforce security, compliance, or operational problems.

LogRhythm addresses this problem by processing log data from multiple platforms, and attempting to present it to the IT user in a meaningful way. The first step in this process is tagging log entries using a proprietary classification model that's conducive to future searches. So a denial of service attack would be classified as a security threat, while a failed log-in might be logged as an auditing problem.

The software also prioritizes log events based on a 100-point risk model. Depending on what servers or applications were impacted, the size of a file involved, or what country the request originated in, LogRhythm can assign the event a value that gives greater meaning than technical mumbo-jumbo that only a programmer could love.

The final component of the company's "intelligent" IT search strategy involves end-user tools. Once the events have been normalized, classified, and contextualized by the LogRhythm product, managers can use wizard-based interfaces to search through events using meaningful criteria. A series of graphical visualization tools can communicate trends contained across millions of log entries with a single picture. To make getting to this data easy, LogRhythm offers "one-click correlation" to help refine searches, and search tool bars that can be accessed from any screen.

Chris Petersen, CTO of LogRhythm, says the new Intelligent IT search function does the "heavy lifting" of mining log data for actionable information. "Logs provide the digital fingerprints for an entire network, giving visibility into the operations, activities, and security of its interconnected systems, devices, and applications," he says.

LogRhythm's offerings begin at $20,000. For more information, visit www.logrhythm.com.


RELATED STORY

LogRhythm Partners with PowerTech to Support i OS Log Data


                     Post this story to del.icio.us
               Post this story to Digg
    Post this story to Slashdot

Sponsored By
MAXIMUM AVAILABILITY

Are you still getting the best deal
on your HA/DR solution?

Before you cut another check
get a quote from *noMAX.

Enterprise or SMB, *noMAX excels.
Check our references. *noMAX is proven,
robust, reliable, easy to use and
simple to install.

Smart thinking saves you money.

It costs nothing to ask.
Contact us on 1- 888 400 1541
or email sales@maxava.com
Editor: Alex Woodie
Contributing Editors: Dan Burger, Joe Hertvik,
Shannon O'Donnell, Timothy Prickett Morgan
Publisher and Advertising Director: Jenny Thomas
Advertising Sales Representative: Kim Reed
Contact the Editors: To contact anyone on the IT Jungle Team
Go to our contacts page and send us a message.

Sponsored Links

New Generation Software:  Run IBM Query/400 from your Windows desktop!
Bug Busters Software Engineering:  High availability software that won't break the bank
COMMON:  Join us at the 2009 annual meeting and expo, April 26-30, Reno, Nevada
 

IT Jungle Store Top Book Picks

Easy Steps to Internet Programming for AS/400, iSeries, and System i: List Price, $49.95
Getting Started with PHP for i5/OS: List Price, $59.95
The System i RPG & RPG IV Tutorial and Lab Exercises: List Price, $59.95
The System i Pocket RPG & RPG IV Guide: List Price, $69.95
The iSeries Pocket Database Guide: List Price, $59.00
The iSeries Pocket Developers' Guide: List Price, $59.00
The iSeries Pocket SQL Guide: List Price, $59.00
The iSeries Pocket Query Guide: List Price, $49.00
The iSeries Pocket WebFacing Primer: List Price, $39.00
Migrating to WebSphere Express for iSeries: List Price, $49.00
iSeries Express Web Implementer's Guide: List Price, $59.00
Getting Started with WebSphere Development Studio for iSeries: List Price, $79.95
Getting Started With WebSphere Development Studio Client for iSeries: List Price, $89.00
Getting Started with WebSphere Express for iSeries: List Price, $49.00
WebFacing Application Design and Development Guide: List Price, $55.00
Can the AS/400 Survive IBM?: List Price, $49.00
The All-Everything Machine: List Price, $29.95
Chip Wars: List Price, $29.95
 
The Four Hundred
Now What?

IT Doing Better Than Other Careers in 2009

Strengthening Dollar Whacks Oracle's Second Fiscal Quarter

As I See It: The Rhythm of Things Unseen

Uncle Sam to Stop Buying Used IT Gear?

Four Hundred Guru
Two A-maze-ing Programs

End-of-Year Odds and Ends

Admin Alert: Upcoming i5/OS and AnyNet End of Service Dates

Four Hundred Monitor
Four Hundred Monitor's
Full iSeries Events Calendar

System i PTF Guide
December 27, 2008: Volume 10, Number 52

December 20, 2008: Volume 10, Number 51

December 13, 2008: Volume 10, Number 50

December 6, 2008: Volume 10, Number 49

November 29, 2008: Volume 10, Number 48

November 22, 2008: Volume 10, Number 47

TPM at The Register
Server racket to slow in 2009?

Big Blue urged to open Notes and Domino

Data center budgets to stay course in 2009?

New Unisys CEO tightens the belt

Sun boosts OpenSolaris on Atom

VMware piles up next virtual stack for servers

Supermicro does micro server for SOHOs

Red Hat shakes off economic meltdown

UBS says IT spending in Europe, US to drop 2 per cent in 2009

Visionman launches Nehalem Core i7 servers

American IT staffing will not tank in Q1

Rackable servers goin' mobile

Red Hat extends RHEL release support

Sun revs VirtualBox desktop virtualization

THIS ISSUE SPONSORED BY:

ProData Computer Services
Bytware
Maximum Availability
VAULT400
Twin Data


Printer Friendly Version


TABLE OF CONTENTS
Safestone Gives i Security Officers Greater Control

SPSS to Update ShowCase OLAP Server Technology

Rand McNally Keeps Truckers On the Go and In the Know

The Who's and What's of ESBs and eSBs

Mohawk Slashes Report Delivery Times, Thanks to Centerfield

News Briefs and Product Shorts:
T.L. Ashford Eases Setup with Barcode400 . . . Shore Bancshares Licenses i-Based Core System from Jack Henry . . . LogRhythm Debuts New 'Intelligent' IT Search . . . Siemens Taps CCSS to Monitor Outsourced i OS Environment . . . Infor Begins North American VAR Recruitment Drive . . .

Four Hundred Stuff

BACK ISSUES




 
Subscription Information:
You can unsubscribe, change your email address, or sign up for any of IT Jungle's free e-newsletters through our Web site at http://www.itjungle.com/sub/subscribe.html.

Copyright © 1996-2009 Guild Companies, Inc. All Rights Reserved.
Guild Companies, Inc., 50 Park Terrace East, Suite 8F, New York, NY 10034

Privacy Statement