LANguard Security Event Log Monitor.

GFI GFI Ground Fault Interrupter
GFI Go For It
GFI Government-Furnished Information
GFI Growing Families International
GFI Goodness of Fit Indices
GFI Government Financial Institutions (Philippines)
GFI Gross Farm Income has launched LANguard Security Event Log Monitor (S.E.L.M.), a host-based intrusion detection See IDS and IPS. tool which is a centralized cen·tral·ize
v. cen·tral·ized, cen·tral·iz·ing, cen·tral·iz·es

v.tr.
1. To draw into or toward a center; consolidate.

2. event log security analyzer that retrieves all security event logs from servers and workstations and alerts administrators of breaches for immediate intrusion detection.

Comment:

Traditional intrusion detection products sniff network traffic, and are therefore `blinded" by the use of switches, IP traffic encryption The reversible transformation of data from the original (the plaintext) to a difficult-to-interpret format (the ciphertext) as a mechanism for protecting its confidentiality, integrity and sometimes its authenticity. Encryption uses an encryption algorithm and one or more encryption keys. and high-speed data transfer. Furthermore, conventional intrusion detection tools rely on attack patterns; however these are constantly changing and therefore the attack pattern database is almost immediately outdated.

LANguard, scans the Windows NT/2000 security event logs in real time monitors then logs for significant security events and compares them to a rule base. Such events would include, for example, failed object access to confidential files, logon See login.

1. (jargon) logon - login.
2. (networking) logon - In ACF/VTAM, an unformatted session-initiation request for a session between two logical units. failures occurring in the network, user accounts changes and additions, successful logon of a user outside office hours office hours,
n.pl See business hours. .

LANguard S.E.LM also archives all security events in a centralized location, allowing for reporting and forensic analysis. This system can view, log on and log off times of all network users, view trends, or see which machine is attacked most. It also can identify users who are creating too many events such as failed log ons, failed object access, etc. The reports enable administrators to obtain important information about security activity on the network. For more product information, visit

http://www.gfi.com/languard/lanselm.htm.

COPYRIGHT 2001 A.P. Publications Ltd.
No portion of this article can be reproduced without the express written permission from the copyright holder.

Reader Opinion

Article Details
Printer friendly Cite/link Email Feedback
Title Annotation:	GFI Software
Publication:	Database and Network Journal
Geographic Code:	1USA
Date:	Aug 1, 2001
Words:	237
Previous Article:	SelectAccess 3.0.(Baltimore Technologies)(Product Announcement)
Next Article:	Nokia IP740.(security appliance)(Brief Article)
Topics:	Computer software industry Product introduction Network security software Software Software industry Product introduction

Related Articles
Free copy of Languard Security Event Log Monitor (S.E.L.M.). (Security Notes).(Brief Article)
LANguard Network Scanner upgraded. (Network Products).(Product Announcement)
GFI LANguard Security Event Log Monitor (S.E.L.M.) 3.0. (Security).(Brief Article)(Product Announcement)
Free new email tests. (Security).(GFI's Email Security Testing )
GFI email exploit engine. (Virus Notes).
EventLogScan-free online event log scanning service. (News and Products).(Brief Article)
LANguard Content Filtering. (Virus Notes).(GFI LANguard Content Filtering & Anti-virus for ISA Server)(Product Information)(Brief Article)
Network security scanner now commercial. (Security News and Products).
Security Event Log Monitor (S.E.L.M.) 5.(Security)
TMC Labs Innovation Awards 2006: Part I.