Press Release Summary:
VeriSignÂ® Log Management Service can log, track, and analyze user and system activity, helping prevent, detect, and respond to security breaches. Supporting log inputs from various operating systems, databases, and applications, solution can also monitor custom applications and other sources that do not have defined types of suspicious events. Meeting compliance requirements, service monitors data sources 24/7/365 and offers real-time correlation.
Original Press Release:
VeriSign Introduces the First Fully-Managed Service to Collect, Analyze, Store and Alert on Logs
Service Enables Broader Compliance and More Comprehensive Security and Significantly Reduces Costs Associated With Traditional Solutions
MOUNTAIN VIEW, Calif., Sept. 7 -- VeriSign, Inc., (NASDAQ:VRSN), the leading provider of intelligent infrastructure services for Internet and telecommunications networks, today announced the VeriSign(R) Log Management Service, which helps address the complexities associated with monitoring, analyzing, retaining, and storing logs from databases and other critical infrastructure.
Log Monitoring is a critical requirement for any company that falls under regulatory and industry requirements. The VeriSign (R) Log Management Service provides customers with the ability to log, track, and analyze user and system activity, helping them to more rapidly prevent, detect and respond to security breaches.
"VeriSign has a long history of monitoring network and operating system log data. With this service we are extending our managed security services to the application level," said Chris Babel, vice president and general manager for VeriSign(R) Managed Security Services. "This service will provide a solution for a much broader range of data types which allows us to address a large and growing market for both compliance and security that is not currently addressed by service providers."
The VeriSign (R) Log Management Service will offer broader support for log inputs from operating systems, databases, and applications. It also provides a service-based approach to monitoring custom applications and other sources that do not have defined types of suspicious events.
"As a current VeriSign log monitoring customer, VeriSign's ability to collect, analyze, store, and alert on security logs from our network devices and critical hosts helps us meet security and compliance requirements," said Debra Ann Eichholtz, manager, Information Assurance, PPL Corp. "We are excited about the benefits that will be provided by extending this service to include applications and a much broader range of devices."
"Centralized logging and monitoring of application-level events [are] being driven by regulatory compliance, highly publicized data theft incidents, the changing nature of vulnerabilities and targeted application-level attacks," said Amrit T. Williams, research director for Gartner. "Organizations should implement solutions in support of centralized application-level monitoring and logging." (Recommendations for Security Administration, Amrit T. Williams et al, February 2006).
The VeriSign Log Management Service leverages technology from LogLogic that will include an optional on-premise solution where raw logs are stored at the customer site, with alerts sent to VeriSign's centralized Security Operation Center (SOC) for ticketing, analysis, and response. VeriSign will continue to offer a hosted solution where all log data is stored in VeriSign's infrastructure. Reporting via the VeriSign Enterprise Security Portal will allow customers to see events that have been captured and allow for reports to be assigned to users who sign-off once they have completed their review to help with audit activities.
According to Forrester Research, "Most security professionals still spend a good deal of their time analyzing technical threats, and how to use technology to counter them. Security folks still need to make sure logs are examined, vulnerabilities are identified, and systems are protected." ("Bridging the Security Divide" Forrester Research, January 2006).
Key Benefits of VeriSign Log Management Service include:
-- Ability to have data sources monitored 24x7x365;
-- Ability to meet compliance requirements for log monitoring and retention;
-- Real-time correlation and analysis; and
-- Ability to leverage VeriSign's consulting and engineering teams to implement solutions for a broad range of log sources;
Pricing will be a monthly service fee based on the number of log inputs, volume, and storage requirements.
For more information on VeriSign(R) Log Management Service, please go to: verisign.com/mss/logmanagement .
For additional information on VeriSign Managed Security Services, please visit: www.verisign.com/managed-security-services/index.html .
VeriSign, Inc., operates intelligent infrastructure services that enable and protect billions of interactions every day across the world's voice and data networks. Additional news and information about the company is available at www.verisign.com .