Consul Risk Management has released a new version of its eAudit
software for collecting and collating information about events
occurring on hardware across a network, writes Eric Doyle.
The product will help network managers to monitor both external and
internal threats to system security. Consul's chief executive Koen
Bouwers said, "Servers, mainframes, firewalls, intrusion detection
systems and applications all store their information in different
formats and often in different places. eAudit allows all of these
logs to be collected and formatted into a single report that gives
an overview of the entire system from a single console."
A key component of the software is the security policy, which is
customised to set parameters and thresholds for specific security
breaches or system anomalies that could indicate malevolent
behaviour. This allows the pinpointing of individual systems within
the company that persistently break these rules.
Over time, the security policy can be refined or changed as new
threats and vulnerabilities appear, even if the underlying hardware
has not been updated or extended.