RSS
Логотип
Баннер в шапке 1
Баннер в шапке 2

RSA NetWitness Panorama

Product
The name of the base system (platform): RSA NetWitness Suite
Developers: RSA (Security Division of EMC)
Date of the premiere of the system: August, 2011
Technology: Network Health Monitoring - Monitoring of network or management of health performance of IT Infrastructure,  Firewall

The new module RSA NetWitness Panorama from the RSA NetWitness family provides new approach to the analysis of security due to consolidation of hundreds of data sources of magazines of registration with information on external threats. Combining this module with RSA NetWitness, the enterprises receive extraordinary wide and powerful tool of the overview of critical information which is necessary for detection of today's target, dynamic and hidden mechanisms of the attack. RSA NetWitness Panorama can be unrolled by three different methods: as expansion of installations RSA NetWitness for combination of the different information which is contained in magazines of registration with extensive information from capture of traffic; together with RSA enVision for the fast analysis of security on all amount of data of the magazines collected by RSA enVision; as the separate module of analytics of magazines with the SIEM tools of the third firms or without them.

The RSA NetWitness Panorama technology applies a set of innovations of NetWitness in order that data of magazines were actively used in security transactions. Among these innovations:

  • interactive data analysis using over 200 different formats of corporate magazines on the basis of determinations of content of RSA enVision;
  • the advanced patented profound data analysis about sessions in network and magazines;
  • mature intellectual knowledge of threats in combination with data of magazines for receiving more exact context of threats which automate key components of process of exchange of information on threats;
  • the provided data give to experts in security the chance to study advanced threats and to carry out their profound analysis;
  • the scalability and speed of the RSA NetWitness platform provide fast analytics of magazines based on which it is possible to eliminate potential threats;
  • the high-speed connector RSA enVision for the module RSA NetWitness Panorama provides transfer of flows of detailed data to RSA NetWitness Panorama at deployment of side-by-side.

The module RSA NetWitness Panorama can collect directly data of syslog-magazines or take more detailed data directly from the RSA enVision SIEM platform, providing thus even more detailed context for investigations and response to incidents.