Using Behavior-Based Correlation to Detect Threats in Real Time

Free registration required

Executive Summary

The EventCorrelator is an important and powerful tool in the hands of the system administrator and is crucial for maximizing the value of event log management and analysis. Often the clues to an ongoing attack are scattered across multiple systems and devices and it becomes nearly impossible to detect these subtle signs manually in real-time. The EventCorrelator enables defense in depth where security information can be collected from perimeter devices, systems and applications and rules run on events from multiple servers and domains to detect patterns of behavior indicating a breach of security.

  • Format: Webcast
  • Size: 0 KB