incubator-alois-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Apache Wiki <wikidi...@apache.org>
Subject [Alois Wiki] Update of "IMF2011" by UrsLerch
Date Fri, 14 Jan 2011 21:50:44 GMT
Dear Wiki user,

You have subscribed to a wiki page or wiki category on "Alois Wiki" for change notification.

The "IMF2011" page has been changed by UrsLerch.
The comment on this change is: extended the description of Apache ALOIS.
http://wiki.apache.org/alois/IMF2011?action=diff&rev1=14&rev2=15

--------------------------------------------------

  By this he means the combination of the three components of open architecture, open standards
and open source, in which a full interoperability can be achieved. The goal of "Open Computing"
is the flexibility of a modular integration of function as well as independence from manufacturers,
both in hardware and in software. While for example Apple goes the opposite way, due to the
experiences of recent years and decades it can be predicted with good conscience, that software
will be successful mainly because of its openness.
  
  == What does Apache ALOIS stand for? ==
- Apache ALOIS [http://incubator.apache.org/alois/] is a log collection and correlation software
with reporting  and alarming functionalities. ALOIS stands for "Advanced Log Data  Insight
System" and is meant to be a fully implemented open source SIEM  security information and
event management system. Since fall 2010 Apache ALOIS is an effort undergoing incubation at
The Apache Software Foundation (ASF). Incubation is required of all newly accepted projects
until a further review indicates that the infrastructure, communications, and decision making
process have stabilized in a manner consistent with other successful ASF projects.
+ Apache ALOIS [http://incubator.apache.org/alois/] is a log collection and correlation software
with reporting  and alarming functionalities. ALOIS stands for "Advanced Log Data  Insight
System" and is meant to be a fully implemented open source SIEM  security information and
event management system. While almost all other SIEM software, be it closed or open source,
concentrate on the technological part of security monitoring, Apache ALOIS is aimed to monitor
the security of the content. It intends to be pro-active in the detection of potential loss,
theft, mistaken modification or unauthorized access. Apache ALOIS works on log messages and
thus contains all the basic functionality of a conventional SIEM, as centralized collecting,
normalizing, aggregation, analyzing and correlating of all log messages, as well as reporting
all security related events. Therefore it can be used as any other SIEM.
  
- The ASF [http://www.apache.org] is made up of nearly 100 top level projects that cover a
wide range of technologies. While you probably know some of them by name, you surely use a
lot of them not knowing it at all by just using the internet. Most of all there is the name
giving webserver, which hosts more than two third of all websites [http://greatstatistics.com/].
The Apache projects are defined by collaborative consensus based processes, an open, pragmatic
software license and a desire to create high quality software that leads the way in its field.
This is known as the "Apache way".
+ Since fall 2010 Apache ALOIS is an effort undergoing incubation at The Apache Software Foundation
(ASF). Incubation is required of all newly accepted projects until a further review indicates
that the infrastructure, communications, and decision making process have stabilized in a
manner consistent with other successful ASF projects. The ASF [http://www.apache.org] is made
up of nearly 100 top level projects that cover a wide range of technologies. While you probably
know some of them by name, you surely use a lot of them not knowing it at all by just using
the internet. Most of all there is the name giving webserver, which hosts more than two third
of all websites [http://greatstatistics.com/]. The Apache projects are defined by collaborative
consensus based processes, an open, pragmatic software license and a desire to create high
quality software that leads the way in its field. This is known as the "Apache way".
  
- While incubation status is not necessarily a reflection of the  completeness or stability
of the code, it does indicate that the project  has yet to be fully endorsed by the ASF. In
fact, Apache ALOIS has shown its functioning over several years in production.
+ While incubation status is not necessarily a reflection of the  completeness or stability
of the code, it does indicate that the project  has yet to be fully endorsed by the ASF. In
fact, Apache ALOIS has shown its functioning over several years in production. Apache ALOIS
is aimed to be totally free and open for all contributions. The openness provided for other
programming languages is certainly proof of this. The plug-ability - yet to be further developed
- is meant to guarantee that individual needs can be realized without stressing the whole
system too much. Furthermore, the basic functionality of ALOIS may be extended in directions
not yet foreseen. In our opinion, the Linux kernel is a good example that this can work very
well.
  
  == SIEM and computer forensics ==
  Since Apache ALOIS is originally designed as a Security Information and Event Management
(SIEM) system, it makes sense to give a very brief introduction in this field. The term SIEM
is a combination of SIM (security information management) and SEM (security event management),
which are disparate tool categories. While SIM is meant to provide long-term storage, analysis
and reporting of log data, SEM deals with real-time monitoring, correlation of events, notifications
and console views. Now, a SIEM combines these two functionalities in one tool.

Mime
View raw message