Many companies mistakenly assume that unauthorized access is only attempted by external parties. Actually, the majority of corporate security threats stem from internal sources, such as users accessing confidential data. Of course, your network provides for security, but many `backdoors` exist. A firewall offers no protection against attacks from within the company. Furthermore, how can you verify that your firewall is actually blocking out all external attacks?
LANguard S.E.L.M. does this by monitoring the security event logs of all your Windows NT/2000 servers and workstations and alerting you to possible intrusions/attacks in real time. Because LANguard S.E.L.M. is not a network-based IDS, it is not impaired by switches, IP traffic encryption or high-speed data transfer, as are traditional intrusion detection products.
Respond quickly to important events without spending hours examining logs
LANguard S.E.L.M. powerfully expands the basic audit and reporting facilities found in Windows NT/2000 to enable administrators to meet daily business needs:
- LANguard S.E.L.M. notifies you of critical security events in real time and provides tips for interpreting events in the context of other activity and recommended courses of action.
- Through LANguard S.E.L.M.’s pre-built event viewer filters, you can quickly check for any high security events on a daily basis and examine medium and low security events on a weekly or monthly basis.
- Use LANguard S.E.L.M.’s report module for in-depth investigations and trends analysis.
|
