Difference between revisions of "Bxp and Security Event Management solutions"
From All n One's bxp software Wixi
Philip Lacey (talk | contribs) (Created page with "This article and feature of bxp are in development Category:To Be Revised Category:Topic:Scenarios") |
Philip Lacey (talk | contribs) |
||
| Line 1: | Line 1: | ||
| − | + | bxp recognises that there are a number of Security Event Management solutions available on the market. bxp is able to integrate solutions at a number of levels to facilitate consistent centralised monitoring and control. | |
| − | [[Category: | + | |
| + | The primary requirement of integration is to decide the level of integration. | ||
| + | |||
| + | |||
| + | Identifying and classifying security events is the primary stage. | ||
| + | |||
| + | |||
| + | With the events identified and classified integration a project is implemented to facilitate your requirements for live logging. | ||
| + | |||
| + | |||
| + | Events will always come from static IP addresses within the bxp platform to facilitate whitelisting. | ||
| + | |||
| + | |||
| + | * HP ArcSight | ||
| + | ** https://protect724.hp.com/docs/DOC-10613 | ||
| + | |||
| + | |||
| + | * Logly | ||
| + | ** https://www.loggly.com/docs/restful-api/ | ||
| + | |||
| + | |||
| + | * Logstash | ||
| + | ** http://logstash.net/docs/1.4.2/outputs/elasticsearch | ||
| + | |||
| + | |||
| + | * Papertrails | ||
| + | ** http://help.papertrailapp.com/kb/how-it-works/http-api/ | ||
| + | |||
| + | |||
| + | * Splunk | ||
| + | ** http://dev.splunk.com/view/rest-api-overview/SP-CAAADP8 | ||
| + | |||
| + | |||
| + | * Splunk>Storm | ||
| + | ** http://docs.splunk.com/Documentation/Storm/Storm/User/UseStormsRESTAPI | ||
| + | |||
| + | |||
| + | * Sumo Logic | ||
| + | ** https://github.com/SumoLogic/sumo-api-doc/wiki | ||
| + | |||
| + | |||
| + | [[Category:Topic:Security]] | ||
[[Category:Topic:Scenarios]] | [[Category:Topic:Scenarios]] | ||
Latest revision as of 20:18, 11 May 2015
bxp recognises that there are a number of Security Event Management solutions available on the market. bxp is able to integrate solutions at a number of levels to facilitate consistent centralised monitoring and control.
The primary requirement of integration is to decide the level of integration.
Identifying and classifying security events is the primary stage.
With the events identified and classified integration a project is implemented to facilitate your requirements for live logging.
Events will always come from static IP addresses within the bxp platform to facilitate whitelisting.
- HP ArcSight
