• The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
Menu
  • The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
  • Raz-Lee Feeds IBM i Data into RSA SIEM

    March 18, 2011 Alex Woodie

    RSA Security recently certified IBM i security software from Raz-Lee Security to feed log data into its enVision security information and event management (SIEM) offering. The integration gives IBM i shops a proven way to keep one of the security world’s most adopted and well-respected SIEM devices in tune with events occurring on the IBM i server.

    Earlier this month, Raz-Lee announced that RSA had certified iSecurity version 11.4 to translate IBM i data into the Syslog format, and feed it into the enVision SIEM, an enterprise-class security device that’s been adopted by about 1,600 customers. The integration involves various components of iSecurity, including AP-Journal, Audit, Anti-Virus, Firewall, and Authority on Demand.

    As a result of the integration, several security events on the IBM i server can now be detected in real time via the SIEM, including: attempts to hack into the server through network exit points; attempts to change user authority levels; the presence of viruses on the IFS; and attempts to edit or delete IBM i application objects and data files.

    The integration satisfies demand from RSA customers to include the IBM i server within the scope of protection provided by the enVision SIEM device. IBM i event information can now be included in standard security and compliance reports generated by enVision. Most importantly, customers can now correlate any unusual activity detected on the IBM i server with activity detected in other computer systems and networks. This is the crux of the SIEM, and enables organizations stay on top of the latest blended threats that cyber criminals are using to pilfer corporate IT systems for data and money.

    Internal networks are used to send IBM i event information from iSecurity to envision. Users can send the data via several means, including the IBM i message queue (MSGQ), short messaging service (SMS), simple network management protocol (SNMP), and even the Twitter messaging service, according to an RSA implementation guide. Raz-Lee added automatic generation of Twitter messages to its products last year at the COMMON conference in Orlando, Florida.

    According to the RSA brochure, iSecurity can use Twitter to send IBM i security information at speeds of up to 1,000 lines per second. Messages can also be sent under different severity ratings, including emergency, alert, critical, error, and warning.

    Raz-Lee touts one of the largest insurance companies in Israel as one of the first iSecurity customers to start sending IBM i data to enVision. According to a customer brief from Raz-Lee, the company was able to stop storing IBM i event data on the IBM i server itself after it started sending them to enVision, which saved a considerable amount of disk space, as well as I/O overhead.

    The company also discovered what many other security experts have been saying for years: that the IBM i server can be somewhat chatty when it comes to logs and message queues. It was generating so much IBM i log data that it overwhelmed enVision, and the company was forced to use filters to scale back the number of events it sent over the wire.

    iSecurity is not the only IBM i security tool that can feed data to enVision, which was originally developed by a company called Network Intelligence that was acquired by EMC around the same time that EMC bought RSA in 2006. Raz-Lee doesn’t have formal partnerships in place with other SIEM vendors, but a company spokesman says it’s easy to support other SIEMs. Raz-Lee does have a partnership with Imperva, which focuses on database security.

    The integration supports Raz-Lee iSecurity version 11.4 and higher running on i5/OS V5R3 through IBM i 7.1. For more information, see the vendors’ websites at www.rsa.com and www.razlee.com.

    RELATED STORIES

    Raz-Lee Unveils GUI for IBM i Journal Security Tool

    Raz-Lee Gets the Twitter Bug

    Imperva and Raz-Lee Team Up for DB2/400 Security Software

    Raz-Lee Adds Object-Level Security to i OS Security Suite

    RSA Cracks Down on Security Threats with enVision 4.0



                         Post this story to del.icio.us
                   Post this story to Digg
        Post this story to Slashdot

    Share this:

    • Reddit
    • Facebook
    • LinkedIn
    • Twitter
    • Email

    Tags:

    Sponsored by
    WorksRight Software

    Do you need area code information?
    Do you need ZIP Code information?
    Do you need ZIP+4 information?
    Do you need city name information?
    Do you need county information?
    Do you need a nearest dealer locator system?

    We can HELP! We have affordable AS/400 software and data to do all of the above. Whether you need a simple city name retrieval system or a sophisticated CASS postal coding system, we have it for you!

    The ZIP/CITY system is based on 5-digit ZIP Codes. You can retrieve city names, state names, county names, area codes, time zones, latitude, longitude, and more just by knowing the ZIP Code. We supply information on all the latest area code changes. A nearest dealer locator function is also included. ZIP/CITY includes software, data, monthly updates, and unlimited support. The cost is $495 per year.

    PER/ZIP4 is a sophisticated CASS certified postal coding system for assigning ZIP Codes, ZIP+4, carrier route, and delivery point codes. PER/ZIP4 also provides county names and FIPS codes. PER/ZIP4 can be used interactively, in batch, and with callable programs. PER/ZIP4 includes software, data, monthly updates, and unlimited support. The cost is $3,900 for the first year, and $1,950 for renewal.

    Just call us and we’ll arrange for 30 days FREE use of either ZIP/CITY or PER/ZIP4.

    WorksRight Software, Inc.
    Phone: 601-856-8337
    Fax: 601-856-9432
    Email: software@worksright.com
    Website: www.worksright.com

    Share this:

    • Reddit
    • Facebook
    • LinkedIn
    • Twitter
    • Email

    Sponsored Links

    System i Developer:  Upgrade your skills at the RPG & DB2 Summit in Orlando, March 22-24
    Townsend Security:  Learn how to easily and securely communicate with XML
    Northeast User Groups Conference:  21th Annual Conference, April 11 - 13, Framingham, MA

    IT Jungle Store Top Book Picks

    BACK IN STOCK: Easy Steps to Internet Programming for System i: List Price, $49.95

    The iSeries Express Web Implementer's Guide: List Price, $49.95
    The iSeries Pocket Database Guide: List Price, $59
    The iSeries Pocket SQL Guide: List Price, $59
    The iSeries Pocket WebFacing Primer: List Price, $39
    Migrating to WebSphere Express for iSeries: List Price, $49
    Getting Started with WebSphere Express for iSeries: List Price, $49
    The All-Everything Operating System: List Price, $35
    The Best Joomla! Tutorial Ever!: List Price, $19.95

    Admin Alert: Corralling i/OS Storage Hogs, Part 2 IBM Hikes Maintenance Fees on Power-Based Gear

    Leave a Reply Cancel reply

Volume 11, Number 8 -- March 1, 2011
THIS ISSUE SPONSORED BY:

Maxava
Abacus Solutions
ManageEngine
Townsend Security
Twin Data Corporation

Table of Contents

  • Raz-Lee Feeds IBM i Data into RSA SIEM
  • BIRT Makes Open Source Waves in BI World
  • IBM i Vendors: It’s Time to Rally
  • Sirius Claims Third Consecutive Beacon Award, Notes IBM i Trends
  • PowerTech Adds Innovatum’s Monitoring Tool to Product Mix
  • E-Mail Storage Solution for Outlook Users from ACOM
  • MaddenCo Goes GUI with Tire Store App
  • Key to Resell UNIT4 CODA Financials
  • Friedman Nabs Viewlocity for SCM
  • Solarsoft Reports New Implementations of iVP Suite

Content archive

  • The Four Hundred
  • Four Hundred Stuff
  • Four Hundred Guru

Recent Posts

  • Liam Allan Shares What’s Coming Next With Code For IBM i
  • From Stable To Scalable: Visual LANSA 16 Powers IBM i Growth – Launching July 8
  • VS Code Will Be The Heart Of The Modern IBM i Platform
  • The AS/400: A 37-Year-Old Dog That Loves To Learn New Tricks
  • IBM i PTF Guide, Volume 27, Number 25
  • Meet The Next Gen Of IBMers Helping To Build IBM i
  • Looks Like IBM Is Building A Linux-Like PASE For IBM i After All
  • Will Independent IBM i Clouds Survive PowerVS?
  • Now, IBM Is Jacking Up Hardware Maintenance Prices
  • IBM i PTF Guide, Volume 27, Number 24

Subscribe

To get news from IT Jungle sent to your inbox every week, subscribe to our newsletter.

Pages

  • About Us
  • Contact
  • Contributors
  • Four Hundred Monitor
  • IBM i PTF Guide
  • Media Kit
  • Subscribe

Search

Copyright © 2025 IT Jungle