ArcSight Logger 4 offers protection from cybercrime
Appliance collects, analyzes up to 42T of structured and unstructured data
- By Trudy Walsh
- Nov 04, 2009
ArcSight has released the fourth generation of its log management tool, ArcSight Logger. According to company representatives, ArcSight Logger 4 offers protection against the effects of cybercrime by
- Providing high-speed data collection of up to 42 terabytes of log data on a single appliance.
- Searching and reporting on terabytes of data in seconds, using a Google-like interface.
- Providing secure storage and access of log data, with support for Federal Information Processing Standards and Common Access Cards.
The rack-mountable appliance comes in two sizes: The smaller version can hold 25 terabytes of log data, and the larger holds 42 terabytes, said Rick Caccia, vice president of product marketing at ArcSight. ArcSight Logger 4 lets users index and search both structured and unstructured data, Caccia said. Unstructured data includes all the Web pages, e-mail and word processing documents that fill much of the Internet and aren’t filed into structured databases.
ArcSight Logger 4 collects, searches and analyzes three kinds of data:
- Systems and IT operations data, such as CPU spikes, disk usage and network flows, detecting and remediating malware such as bots and keyloggers.
- User data, which ArcSight Logger investigates to heal data breaches.
- Application data, which ArcSight Logger analyzes for fraud activity.
The company recently surveyed 48 government and financial services customers and found that almost 30 percent of respondents had 10,000 devices that produce events or logs related to cybersecurity. Seventy-five percent of those surveyed said they weren’t sure what to look for when researching a cyberattack. Eighty percent said they believe cyberattacks will increase next year.
ArcSight Logger 4 will be available this month, and prices start at $20,000. For more information, visit www.arcsight.com.
Trudy Walsh is a senior writer for GCN.