LogSECA is a tool that lies on the top of SIEM concept and on XDAS OpenGroup standard. It provides the following main capabilities:
» secure and reliable retention of audit records for reliability and accountability, even in case of the source of event/log fails or the logs on it are accidentally or intentionally cancelled;
» correlation of audit records in order to identify violation of security policies in the different data centres of the cloud infrastructure, which it would be impossible to do if each data centre processed events separately;
» alerting and notification to the interested parties (e.g. security manager of the storage infrastructure);
» control on the status of the corrective actions;
» reporting at different levels (for basic audit inspection, statistical) and for different purposes (for final users, for internal purposes, for auditing).
The design and development of this prototype have been partially founded by the VISION Cloud EU FP7 project
Be the first to post a review of LogSeCA!