Navigation

Management Solutions
:: Performance
:: Availability
:: Security


Vendor Solutions
  :: Apani
  :: Lancope
  :: McAfee
  :: nCircle
  :: Netcordia
  :: netForensics


:: White Papers
 NetForensics
 Product Information

   :: nFX SIM One
      :: Architecture
      :: Correlation
      :: Visualisation
      :: Incident Resolution
      :: Reporting & Analytics
      :: Security Knowledge
   :: nFX Cinxi
   :: nFX Data One
 
 Multi-Dimensional Correlation

Ensuring that your organisation has an accurate, comprehensive and real-time understanding of security risk is essential for keeping your business secure and operational, while also meeting complex compliance demands. Yet most event correlation technologies simply capture and correlate security event data from security devices only, leaving important data from other core applications and databases overlooked.

Linking Events to Critical Incidents, nFX SIM One Rapidly Identifies Threats >From the Perimeter to the Core

nFX SIM One enables a proactive—and comprehensive—approach to information security management, allowing you to transform raw security event data into actionable information.

nFX SIM One provides powerful, multi-dimensional correlation technology so you can:

  • Leverage unprecedented security visibility from the perimeter to the core, including security and network devices, critical applications, and core databases
  • Automatically process and prioritise massive amounts of security information, and effectively escalate legitimate historical, real-time, and potential threats
  • Bring to light hard-to-detect suspicious patterns rather than just pinpointing known attacks
  • Employ a streamlined SIM solution with advanced event correlation and log correlation technology—scaled to your unique business environment—to protect against threats while minimising resource requirements and administration overhead

Multi-dimensional Correlation Technology: For Tackling the Right Security Events at the Right Time

nFX SIM One is the only SIM solution that features a four-layered approach to correlating security-related data across perimeter devices and core technologies. Through rules-based, vulnerability, statistical, and historical correlation, you’re empowered with a comprehensive, actionable method for securing your technology infrastructure while maintaining compliance.
Rules-Based Correlation

  • Performs 100 million state checks per second, so you can manage massive amounts of data while effectively monitoring applications, databases, and perimeter devices in real time
  • Applies conditional logic to identify likely attack scenarios
  • Implements multi-state rules that require meeting a series of conditions within a specified time period prior to an alert being issued, reducing the number of written rules needed and decreasing false positives

Vulnerability Correlation

  • Allows you to employ vulnerability correlation without writing rules
  • Identifies potential threats to high-value assets by correlating scanner and IDS data
  • Prioritises patching efforts to reduce risk without losing time writing and maintaining rules

Statistical Correlation

  • Determines incident severity with out-of-the-box statistical algorithms, assigning a threat score based on asset value
  • Analyses network behavior and identifies threats based on the prevalence and severity of anomalous event patterns

Historical Correlation

  • Identifies repeating patterns of attacks, along with automated and slow attacks that may be veiled within millions of raw security events
  • Rapidly detects previously unrecognised malicious events, adding another level of defense to your security program

Learn more about nFX SIM One's powerful capabilities for ensuring effective threat and risk management:

Download the nFX SIM One Data Sheet
 
home page  |  company  |  services  |  solutions  |  news roomjobs
© Copyright 2002 - 2009 iSimile Limited / netForensics Inc.