SlideShare une entreprise Scribd logo

Arcsight dataplattform

M
Mia Chatin

New HPE ArcSight Data Platform 2.0 delivers industry’s first open security architecture that seamlessly connects to third party platforms, including Hadoop

Technologie
1  sur  4
Télécharger pour lire hors ligne
Data sheet Scalable, high-performance data engine Next-generation data collection and storage engine HPE ADP delivers a cost-effective and universal Big Data solution that unifies data collection, alerting, searching, and reporting on any type of enterprise machine data. This unified machine data can be used for compliance, regulations, security, IT operations, and log analytics. It collects machine data from any source (including logs, clickstreams, sensors, stream network traffic, security devices, Web servers, custom applications, social media, and cloud services). It enables you to search, monitor, and analyze the data to gain valuable security intelligence across your entire organization. HPE ArcSight Data Platform Unify collection, storage, and analysis of machine data for security intelligence In today’s non-stop world, you need to unify machine data across the enterprise for compliance, regulations, security, IT operations, and log analytics. HPE ArcSight Data Platform (ADP) is a high performance, cost-effective platform that unifies all types of enterprise machine data so you can collect, store, search, report, and manage security data. Benefits Provides the ability to: • Capture variety, volume, and velocity of information necessary to detect security breaches • Set up, upgrade, and maintain with just a few clicks • Store data cost-effectively with high compression ratio Highlights • Massively scalable, high performance data engine • Architected for breadth, depth, and speed of data collection that Big Data demands • Collects and stores machine data from any source (including logs, network traffic streams, clickstreams, sensors, Web servers, custom applications, hypervisors, social media, and cloud services) ArcSight Data Platform Enterprise security management User behavior analytics Third-party applications Hadoop Hunt tools Visualization tools Servers Data centers Security devices Laptops Smartphones and mobile devices Web data (logs and clickstreams) Network devices Applications Call logs Network traffic streams Rich media content Social media Web 2.0 HPE ADP is now architected for breadth, depth, and speed of data collection that Big Data demands. This next-generation data collection and storage engine are based on the latest HPE ProLiant Gen9 hardware. HPE ADP architecture allows you to capture data at rates of up to 400,000 events per second, compresses and stores up to 480 TB of data, and executes searches at millions of events per second. Our new efficient appliance provides up to 49 percent faster searches than its predecessor. The new Connector Host Appliance has the capability to ingest raw data 5X faster than its predecessor (up to 25,000 EPS).
Page 2Data sheet Flexible deployment architecture With HPE ADP, you can easily expand the size and breadth of a deployment. Security teams can begin with a small, midsized, or large deployment and add new processing or functional capabilities on the fly. Architecture HPE ADP comes as an appliance or software for deployment flexibility. The architecture allows for ingest rates of terabytes of data per day. HPE ADP can be configured as a cluster providing load-balanced collection, with search queries distributed across the platform. Storage HPE ADP offers multiple storage options. In addition, to RAID-enabled onboard log management storage for appliances, both software and appliance solutions can also leverage an existing NAS, direct-attached storage (DAS), and SAN investment as the primary datastore. Regardless of whether the storage is onboard or off-board, data is efficiently compressed at a ratio of 10:1. It can store up to 480 TB of data. Integration HPE ADP leverages HPE ArcSight Common Event Format (CEF), an extensible, text-based, high-performance format designed to support multiple device types so that data can be easily collected and aggregated for analysis by an enterprise management system (ESM). It can be used in conjunction with any security application such as HPE ArcSight ESM, User Behavior Analytics, or any third-party applications to provide event orchestration, automation, correlation, prioritization, and analysis of the security events. Easy to deploy and manage The HPE ADP nodes can be configured, managed, and monitored through a centralized management console, allowing you to connect to data easily—with just a few clicks. It can be configured, managed, and upgraded easily, even in large deployments, allowing you to focus on your use cases and not the tool itself. When managing your environment, monitoring dashboards on the go are now easy with the ADP mobile app. It connects to your data in real time to give you a current snapshot of your organization. Use the mobile app to give access to your extended teams, support, or contractors, avoiding unauthorized access. Secure data collection HPE ADP’s advanced technology delivers encrypted, compressed logs, which keeps data safe from interception, alteration, and deletion—for both data at rest and in motion. HPE ADP supports: • HPE Secure Encryption to help you to meet compliance regulations and privacy challenges by securing your sensitive data at rest. It also supports transport layer security (TLS) and secure sockets layer (SSL) encryption protocols for data in motion. • Federal Information Processing Standard 140-2 (FIPS 140-2): FIPS 140-2 is a standard published by the National Institute of Standards and Technology (NIST). It is used to accredit cryptographic modules in software components. • Security administration and user or group role definitions: Administrators can set access rights for various report categories, reports, and report options (such as view, publish, and edit) based on user roles.
Page 3Data sheet Reliable data collection Before you can confidently interpret and analyze your evaluation data, you must ensure that the data you collect are valid and reliable. HPE ADP provides the following data reliability measures: • Resilient collection with built-in load balancing and failover. • Caching and bandwidth throttling to ensure lossless collection through wide area networks. • Event signing to enable non-repudiation. Ultra-fast investigation and forensics When seconds mean the difference between a successful or thwarted attack, obtaining the right information at the right time is critical. HPE ADP enables ultra-fast investigation of indexed active and historical data via a simple search interface. Interesting search patterns can be easily converted into real-time alerts. Non-stop compliance HPE ADP ships with built-in content and reports that can be used for cyber security, compliance, application security, and IT operations monitoring. Additional content packs—specific to regulations such as PCI, Information Technology Governance, and Sarbanes-Oxley (SOX)—are available and mapped to well-known standards, including NIST 800-53, ISO 27001. Scalability success in the real world Organizations of all sizes have successfully deployed HPE ADP to meet their immediate security requirements and the flexible architecture provides them with the room to grow to meet future needs. For example: • A leading telecommunications company needed to collect massive amounts of data from disparate sources in order to analyze, identify, and respond to incidents and threats. With HPE ArcSight Data Platform, they gained the ability to respond to more than one terabyte of security data per day. • A global communication service provider needed to support Big Data collection and security intelligence in the cloud in response to customer demands. Using HPE ADP and ESM in a multi-tenancy architecture, the company was able to expand revenue opportunity based on the ability to sell security information and event management (SIEM) as a managed service. • A multinational energy and petrochemical company with 94,000 employees in more than 70 countries and territories needed to collect information from 90,000 end devices with a plan to expand to 400,000 devices. HPE ADP provided the ability to collect a large volume of data from and extend security reach to multiple geographical sites across the globe. The Hewlett Packard Enterprise’s global presence and ability to provide support quickly across various geographical locations has been instrumental in helping this global customer achieve their desired security posture. • A small financial institution needed to lay a solid security foundation to be ready for any type of cybercrime initiated from outside the country. With HPE ADP, they can now manage approximately 30 GB per day with room to grow. The solution accurately identifies the country of origin for traffic and requests, highlighting suspicious activity. The information collected is enriched with user information, providing a complete picture of user activity.
Rate this document Sign up for updates Data sheet © Copyright 2013–2014, 2016 Hewlett Packard Enterprise Development LP. The information contained herein is subject to change without notice. The only warranties for Hewlett Packard Enterprise products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. Hewlett Packard Enterprise shall not be liable for technical or editorial errors or omissions contained herein. 4AA4-4849ENW, February 2016, Rev. 4 Learn more at hpe.com/software/adp

Recommandé

Experimental Photography Artist Research
Experimental Photography Artist ResearchExperimental Photography Artist Research
Experimental Photography Artist ResearchJaskirt Boora
 
Emerging Technologies: Heroku for ISVs (October 13, 2014)
Emerging Technologies: Heroku for ISVs (October 13, 2014)Emerging Technologies: Heroku for ISVs (October 13, 2014)
Emerging Technologies: Heroku for ISVs (October 13, 2014)Salesforce Partners
 
SQL saturday 623 TLV - SQL AZURE
SQL saturday 623 TLV - SQL AZURESQL saturday 623 TLV - SQL AZURE
SQL saturday 623 TLV - SQL AZUREPini Krisher
 
Bim based process mining master thesis presentation
Bim based process mining master thesis presentation Bim based process mining master thesis presentation
Bim based process mining master thesis presentation Stijn van Schaijk
 
SPSNL17 - Securing Office 365 and Microsoft Azure like a rock star (or groupi...
SPSNL17 - Securing Office 365 and Microsoft Azure like a rock star (or groupi...SPSNL17 - Securing Office 365 and Microsoft Azure like a rock star (or groupi...
SPSNL17 - Securing Office 365 and Microsoft Azure like a rock star (or groupi...DIWUG
 
Oracle OpenWorld 2016 Review - Focus on Data, BigData, Streaming Data, Machin...
Oracle OpenWorld 2016 Review - Focus on Data, BigData, Streaming Data, Machin...Oracle OpenWorld 2016 Review - Focus on Data, BigData, Streaming Data, Machin...
Oracle OpenWorld 2016 Review - Focus on Data, BigData, Streaming Data, Machin...Lucas Jellema
 
Evolving your automation with hybrid workers
Evolving your automation with hybrid workersEvolving your automation with hybrid workers
Evolving your automation with hybrid workerskieranjacobsen
 
15 oefeningen schakelen van weerstanden
15 oefeningen schakelen van weerstanden15 oefeningen schakelen van weerstanden
15 oefeningen schakelen van weerstandenFreddy Van Eynde
 

Recommandé

Experimental Photography Artist Research
Experimental Photography Artist ResearchExperimental Photography Artist Research
Experimental Photography Artist ResearchJaskirt Boora
 
Emerging Technologies: Heroku for ISVs (October 13, 2014)
Emerging Technologies: Heroku for ISVs (October 13, 2014)Emerging Technologies: Heroku for ISVs (October 13, 2014)
Emerging Technologies: Heroku for ISVs (October 13, 2014)Salesforce Partners
 
SQL saturday 623 TLV - SQL AZURE
SQL saturday 623 TLV - SQL AZURESQL saturday 623 TLV - SQL AZURE
SQL saturday 623 TLV - SQL AZUREPini Krisher
 
Bim based process mining master thesis presentation
Bim based process mining master thesis presentation Bim based process mining master thesis presentation
Bim based process mining master thesis presentation Stijn van Schaijk
 
SPSNL17 - Securing Office 365 and Microsoft Azure like a rock star (or groupi...
SPSNL17 - Securing Office 365 and Microsoft Azure like a rock star (or groupi...SPSNL17 - Securing Office 365 and Microsoft Azure like a rock star (or groupi...
SPSNL17 - Securing Office 365 and Microsoft Azure like a rock star (or groupi...DIWUG
 
Oracle OpenWorld 2016 Review - Focus on Data, BigData, Streaming Data, Machin...
Oracle OpenWorld 2016 Review - Focus on Data, BigData, Streaming Data, Machin...Oracle OpenWorld 2016 Review - Focus on Data, BigData, Streaming Data, Machin...
Oracle OpenWorld 2016 Review - Focus on Data, BigData, Streaming Data, Machin...Lucas Jellema
 
Evolving your automation with hybrid workers
Evolving your automation with hybrid workersEvolving your automation with hybrid workers
Evolving your automation with hybrid workerskieranjacobsen
 
15 oefeningen schakelen van weerstanden
15 oefeningen schakelen van weerstanden15 oefeningen schakelen van weerstanden
15 oefeningen schakelen van weerstandenFreddy Van Eynde
 
Nato Constitution- & Laws. Chris Helweg
Nato Constitution- & Laws. Chris HelwegNato Constitution- & Laws. Chris Helweg
Nato Constitution- & Laws. Chris HelwegChris Helweg
 
The Loss of HMAS SYDNEY 2: Medical Aspects- Westphalen
The Loss of HMAS SYDNEY 2: Medical Aspects- WestphalenThe Loss of HMAS SYDNEY 2: Medical Aspects- Westphalen
The Loss of HMAS SYDNEY 2: Medical Aspects- WestphalenLeishman Associates
 
Plan de transport 2014: le Brabant Flamand
Plan de transport 2014: le Brabant FlamandPlan de transport 2014: le Brabant Flamand
Plan de transport 2014: le Brabant FlamandSNCB
 
Grade 3 text structure assessment teaching guide
Grade 3 text structure assessment teaching guideGrade 3 text structure assessment teaching guide
Grade 3 text structure assessment teaching guideEmily Kissner
 
Brochure go2UBL
Brochure go2UBLBrochure go2UBL
Brochure go2UBLHerman Gerrits
 
Understanding big data
Understanding big dataUnderstanding big data
Understanding big dataIBM India Smarter Computing
 
Bennett raglinphotography
Bennett raglinphotographyBennett raglinphotography
Bennett raglinphotographyBR Photo Creations, Inc.
 
And the new System Center is here... what's actually new?
And the new System Center is here... what's actually new?And the new System Center is here... what's actually new?
And the new System Center is here... what's actually new?Tomica Kaniski
 
Data science unit introduction
Data science unit introductionData science unit introduction
Data science unit introductionGregg Barrett
 
Software Engineering College 6 -timeseries data
Software Engineering College 6 -timeseries dataSoftware Engineering College 6 -timeseries data
Software Engineering College 6 -timeseries dataJurjen Helmus
 
Lightweight Taxonomy Approaches - Taxonomy Bootcamp 2015
Lightweight Taxonomy Approaches - Taxonomy Bootcamp 2015Lightweight Taxonomy Approaches - Taxonomy Bootcamp 2015
Lightweight Taxonomy Approaches - Taxonomy Bootcamp 2015Jessica DuVerneay
 
Unc plus delta
Unc plus deltaUnc plus delta
Unc plus deltaBigDataExpo
 
AWS Summit - Trends in Advanced Monitoring for AWS environments
AWS Summit - Trends in Advanced Monitoring for AWS environmentsAWS Summit - Trends in Advanced Monitoring for AWS environments
AWS Summit - Trends in Advanced Monitoring for AWS environmentsAndreas Grabner
 
Collaboration with Eclipse final
Collaboration with Eclipse finalCollaboration with Eclipse final
Collaboration with Eclipse finalKenu, GwangNam Heo
 
SplunkLive! Nutanix Session - Turnkey and scalable infrastructure for Splunk ...
SplunkLive! Nutanix Session - Turnkey and scalable infrastructure for Splunk ...SplunkLive! Nutanix Session - Turnkey and scalable infrastructure for Splunk ...
SplunkLive! Nutanix Session - Turnkey and scalable infrastructure for Splunk ...Splunk
 
Brown Bag Lunch sur Hazelcast
Brown Bag Lunch sur HazelcastBrown Bag Lunch sur Hazelcast
Brown Bag Lunch sur HazelcastSylvain Wallez
 
High Availability Architecture for Legacy Stuff - a 10.000 feet overview
High Availability Architecture for Legacy Stuff - a 10.000 feet overviewHigh Availability Architecture for Legacy Stuff - a 10.000 feet overview
High Availability Architecture for Legacy Stuff - a 10.000 feet overviewMarco Amado
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...apidays
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?Antenna Manufacturer Coco
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century educationjfdjdjcjdnsjd
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherRemote DBA Services
 

Contenu connexe

En vedette

Nato Constitution- & Laws. Chris Helweg
Nato Constitution- & Laws. Chris HelwegNato Constitution- & Laws. Chris Helweg
Nato Constitution- & Laws. Chris HelwegChris Helweg
 
The Loss of HMAS SYDNEY 2: Medical Aspects- Westphalen
The Loss of HMAS SYDNEY 2: Medical Aspects- WestphalenThe Loss of HMAS SYDNEY 2: Medical Aspects- Westphalen
The Loss of HMAS SYDNEY 2: Medical Aspects- WestphalenLeishman Associates
 
Plan de transport 2014: le Brabant Flamand
Plan de transport 2014: le Brabant FlamandPlan de transport 2014: le Brabant Flamand
Plan de transport 2014: le Brabant FlamandSNCB
 
Grade 3 text structure assessment teaching guide
Grade 3 text structure assessment teaching guideGrade 3 text structure assessment teaching guide
Grade 3 text structure assessment teaching guideEmily Kissner
 
And the new System Center is here... what's actually new?
And the new System Center is here... what's actually new?And the new System Center is here... what's actually new?
And the new System Center is here... what's actually new?Tomica Kaniski
 
Data science unit introduction
Data science unit introductionData science unit introduction
Data science unit introductionGregg Barrett
 
Software Engineering College 6 -timeseries data
Software Engineering College 6 -timeseries dataSoftware Engineering College 6 -timeseries data
Software Engineering College 6 -timeseries dataJurjen Helmus
 
Lightweight Taxonomy Approaches - Taxonomy Bootcamp 2015
Lightweight Taxonomy Approaches - Taxonomy Bootcamp 2015Lightweight Taxonomy Approaches - Taxonomy Bootcamp 2015
Lightweight Taxonomy Approaches - Taxonomy Bootcamp 2015Jessica DuVerneay
 
AWS Summit - Trends in Advanced Monitoring for AWS environments
AWS Summit - Trends in Advanced Monitoring for AWS environmentsAWS Summit - Trends in Advanced Monitoring for AWS environments
AWS Summit - Trends in Advanced Monitoring for AWS environmentsAndreas Grabner
 
Collaboration with Eclipse final
Collaboration with Eclipse finalCollaboration with Eclipse final
Collaboration with Eclipse finalKenu, GwangNam Heo
 
SplunkLive! Nutanix Session - Turnkey and scalable infrastructure for Splunk ...
SplunkLive! Nutanix Session - Turnkey and scalable infrastructure for Splunk ...SplunkLive! Nutanix Session - Turnkey and scalable infrastructure for Splunk ...
SplunkLive! Nutanix Session - Turnkey and scalable infrastructure for Splunk ...Splunk
 
Brown Bag Lunch sur Hazelcast
Brown Bag Lunch sur HazelcastBrown Bag Lunch sur Hazelcast
Brown Bag Lunch sur HazelcastSylvain Wallez
 
High Availability Architecture for Legacy Stuff - a 10.000 feet overview
High Availability Architecture for Legacy Stuff - a 10.000 feet overviewHigh Availability Architecture for Legacy Stuff - a 10.000 feet overview
High Availability Architecture for Legacy Stuff - a 10.000 feet overviewMarco Amado
 

En vedette (17)

Nato Constitution- & Laws. Chris Helweg
Nato Constitution- & Laws. Chris HelwegNato Constitution- & Laws. Chris Helweg
Nato Constitution- & Laws. Chris Helweg
 
The Loss of HMAS SYDNEY 2: Medical Aspects- Westphalen
The Loss of HMAS SYDNEY 2: Medical Aspects- WestphalenThe Loss of HMAS SYDNEY 2: Medical Aspects- Westphalen
The Loss of HMAS SYDNEY 2: Medical Aspects- Westphalen
 
Plan de transport 2014: le Brabant Flamand
Plan de transport 2014: le Brabant FlamandPlan de transport 2014: le Brabant Flamand
Plan de transport 2014: le Brabant Flamand
 
Grade 3 text structure assessment teaching guide
Grade 3 text structure assessment teaching guideGrade 3 text structure assessment teaching guide
Grade 3 text structure assessment teaching guide
 
Brochure go2UBL
Brochure go2UBLBrochure go2UBL
Brochure go2UBL
 
Understanding big data
Understanding big dataUnderstanding big data
Understanding big data
 
Bennett raglinphotography
Bennett raglinphotographyBennett raglinphotography
Bennett raglinphotography
 
And the new System Center is here... what's actually new?
And the new System Center is here... what's actually new?And the new System Center is here... what's actually new?
And the new System Center is here... what's actually new?
 
Data science unit introduction
Data science unit introductionData science unit introduction
Data science unit introduction
 
Software Engineering College 6 -timeseries data
Software Engineering College 6 -timeseries dataSoftware Engineering College 6 -timeseries data
Software Engineering College 6 -timeseries data
 
Lightweight Taxonomy Approaches - Taxonomy Bootcamp 2015
Lightweight Taxonomy Approaches - Taxonomy Bootcamp 2015Lightweight Taxonomy Approaches - Taxonomy Bootcamp 2015
Lightweight Taxonomy Approaches - Taxonomy Bootcamp 2015
 
Unc plus delta
Unc plus deltaUnc plus delta
Unc plus delta
 
AWS Summit - Trends in Advanced Monitoring for AWS environments
AWS Summit - Trends in Advanced Monitoring for AWS environmentsAWS Summit - Trends in Advanced Monitoring for AWS environments
AWS Summit - Trends in Advanced Monitoring for AWS environments
 
Collaboration with Eclipse final
Collaboration with Eclipse finalCollaboration with Eclipse final
Collaboration with Eclipse final
 
SplunkLive! Nutanix Session - Turnkey and scalable infrastructure for Splunk ...
SplunkLive! Nutanix Session - Turnkey and scalable infrastructure for Splunk ...SplunkLive! Nutanix Session - Turnkey and scalable infrastructure for Splunk ...
SplunkLive! Nutanix Session - Turnkey and scalable infrastructure for Splunk ...
 
Brown Bag Lunch sur Hazelcast
Brown Bag Lunch sur HazelcastBrown Bag Lunch sur Hazelcast
Brown Bag Lunch sur Hazelcast
 
High Availability Architecture for Legacy Stuff - a 10.000 feet overview
High Availability Architecture for Legacy Stuff - a 10.000 feet overviewHigh Availability Architecture for Legacy Stuff - a 10.000 feet overview
High Availability Architecture for Legacy Stuff - a 10.000 feet overview
 

Dernier

Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...apidays
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?Antenna Manufacturer Coco
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century educationjfdjdjcjdnsjd
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherRemote DBA Services
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024The Digital Insurer
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationMichael W. Hawkins
 
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CVReal Time Object Detection Using Open CV
Real Time Object Detection Using Open CVKhem
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...apidays
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?Igalia
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfsudhanshuwaghmare1
 
Advantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your BusinessAdvantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your BusinessPixlogix Infotech
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdfhans926745
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘RTylerCroy
 

Dernier (20)

Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century education
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CVReal Time Object Detection Using Open CV
Real Time Object Detection Using Open CV
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
Advantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your BusinessAdvantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your Business
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 

Arcsight dataplattform

  • 1. Data sheet Scalable, high-performance data engine Next-generation data collection and storage engine HPE ADP delivers a cost-effective and universal Big Data solution that unifies data collection, alerting, searching, and reporting on any type of enterprise machine data. This unified machine data can be used for compliance, regulations, security, IT operations, and log analytics. It collects machine data from any source (including logs, clickstreams, sensors, stream network traffic, security devices, Web servers, custom applications, social media, and cloud services). It enables you to search, monitor, and analyze the data to gain valuable security intelligence across your entire organization. HPE ArcSight Data Platform Unify collection, storage, and analysis of machine data for security intelligence In today’s non-stop world, you need to unify machine data across the enterprise for compliance, regulations, security, IT operations, and log analytics. HPE ArcSight Data Platform (ADP) is a high performance, cost-effective platform that unifies all types of enterprise machine data so you can collect, store, search, report, and manage security data. Benefits Provides the ability to: • Capture variety, volume, and velocity of information necessary to detect security breaches • Set up, upgrade, and maintain with just a few clicks • Store data cost-effectively with high compression ratio Highlights • Massively scalable, high performance data engine • Architected for breadth, depth, and speed of data collection that Big Data demands • Collects and stores machine data from any source (including logs, network traffic streams, clickstreams, sensors, Web servers, custom applications, hypervisors, social media, and cloud services) ArcSight Data Platform Enterprise security management User behavior analytics Third-party applications Hadoop Hunt tools Visualization tools Servers Data centers Security devices Laptops Smartphones and mobile devices Web data (logs and clickstreams) Network devices Applications Call logs Network traffic streams Rich media content Social media Web 2.0 HPE ADP is now architected for breadth, depth, and speed of data collection that Big Data demands. This next-generation data collection and storage engine are based on the latest HPE ProLiant Gen9 hardware. HPE ADP architecture allows you to capture data at rates of up to 400,000 events per second, compresses and stores up to 480 TB of data, and executes searches at millions of events per second. Our new efficient appliance provides up to 49 percent faster searches than its predecessor. The new Connector Host Appliance has the capability to ingest raw data 5X faster than its predecessor (up to 25,000 EPS).
  • 2. Page 2Data sheet Flexible deployment architecture With HPE ADP, you can easily expand the size and breadth of a deployment. Security teams can begin with a small, midsized, or large deployment and add new processing or functional capabilities on the fly. Architecture HPE ADP comes as an appliance or software for deployment flexibility. The architecture allows for ingest rates of terabytes of data per day. HPE ADP can be configured as a cluster providing load-balanced collection, with search queries distributed across the platform. Storage HPE ADP offers multiple storage options. In addition, to RAID-enabled onboard log management storage for appliances, both software and appliance solutions can also leverage an existing NAS, direct-attached storage (DAS), and SAN investment as the primary datastore. Regardless of whether the storage is onboard or off-board, data is efficiently compressed at a ratio of 10:1. It can store up to 480 TB of data. Integration HPE ADP leverages HPE ArcSight Common Event Format (CEF), an extensible, text-based, high-performance format designed to support multiple device types so that data can be easily collected and aggregated for analysis by an enterprise management system (ESM). It can be used in conjunction with any security application such as HPE ArcSight ESM, User Behavior Analytics, or any third-party applications to provide event orchestration, automation, correlation, prioritization, and analysis of the security events. Easy to deploy and manage The HPE ADP nodes can be configured, managed, and monitored through a centralized management console, allowing you to connect to data easily—with just a few clicks. It can be configured, managed, and upgraded easily, even in large deployments, allowing you to focus on your use cases and not the tool itself. When managing your environment, monitoring dashboards on the go are now easy with the ADP mobile app. It connects to your data in real time to give you a current snapshot of your organization. Use the mobile app to give access to your extended teams, support, or contractors, avoiding unauthorized access. Secure data collection HPE ADP’s advanced technology delivers encrypted, compressed logs, which keeps data safe from interception, alteration, and deletion—for both data at rest and in motion. HPE ADP supports: • HPE Secure Encryption to help you to meet compliance regulations and privacy challenges by securing your sensitive data at rest. It also supports transport layer security (TLS) and secure sockets layer (SSL) encryption protocols for data in motion. • Federal Information Processing Standard 140-2 (FIPS 140-2): FIPS 140-2 is a standard published by the National Institute of Standards and Technology (NIST). It is used to accredit cryptographic modules in software components. • Security administration and user or group role definitions: Administrators can set access rights for various report categories, reports, and report options (such as view, publish, and edit) based on user roles.
  • 3. Page 3Data sheet Reliable data collection Before you can confidently interpret and analyze your evaluation data, you must ensure that the data you collect are valid and reliable. HPE ADP provides the following data reliability measures: • Resilient collection with built-in load balancing and failover. • Caching and bandwidth throttling to ensure lossless collection through wide area networks. • Event signing to enable non-repudiation. Ultra-fast investigation and forensics When seconds mean the difference between a successful or thwarted attack, obtaining the right information at the right time is critical. HPE ADP enables ultra-fast investigation of indexed active and historical data via a simple search interface. Interesting search patterns can be easily converted into real-time alerts. Non-stop compliance HPE ADP ships with built-in content and reports that can be used for cyber security, compliance, application security, and IT operations monitoring. Additional content packs—specific to regulations such as PCI, Information Technology Governance, and Sarbanes-Oxley (SOX)—are available and mapped to well-known standards, including NIST 800-53, ISO 27001. Scalability success in the real world Organizations of all sizes have successfully deployed HPE ADP to meet their immediate security requirements and the flexible architecture provides them with the room to grow to meet future needs. For example: • A leading telecommunications company needed to collect massive amounts of data from disparate sources in order to analyze, identify, and respond to incidents and threats. With HPE ArcSight Data Platform, they gained the ability to respond to more than one terabyte of security data per day. • A global communication service provider needed to support Big Data collection and security intelligence in the cloud in response to customer demands. Using HPE ADP and ESM in a multi-tenancy architecture, the company was able to expand revenue opportunity based on the ability to sell security information and event management (SIEM) as a managed service. • A multinational energy and petrochemical company with 94,000 employees in more than 70 countries and territories needed to collect information from 90,000 end devices with a plan to expand to 400,000 devices. HPE ADP provided the ability to collect a large volume of data from and extend security reach to multiple geographical sites across the globe. The Hewlett Packard Enterprise’s global presence and ability to provide support quickly across various geographical locations has been instrumental in helping this global customer achieve their desired security posture. • A small financial institution needed to lay a solid security foundation to be ready for any type of cybercrime initiated from outside the country. With HPE ADP, they can now manage approximately 30 GB per day with room to grow. The solution accurately identifies the country of origin for traffic and requests, highlighting suspicious activity. The information collected is enriched with user information, providing a complete picture of user activity.
  • 4. Rate this document Sign up for updates Data sheet © Copyright 2013–2014, 2016 Hewlett Packard Enterprise Development LP. The information contained herein is subject to change without notice. The only warranties for Hewlett Packard Enterprise products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. Hewlett Packard Enterprise shall not be liable for technical or editorial errors or omissions contained herein. 4AA4-4849ENW, February 2016, Rev. 4 Learn more at hpe.com/software/adp