incubator-alois-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Apache Wiki <wikidi...@apache.org>
Subject [Alois Wiki] Update of "IMF2011" by UrsLerch
Date Mon, 17 Jan 2011 13:09:33 GMT
Dear Wiki user,

You have subscribed to a wiki page or wiki category on "Alois Wiki" for change notification.

The "IMF2011" page has been changed by UrsLerch.
The comment on this change is: added some words to the conclusion.
http://wiki.apache.org/alois/IMF2011?action=diff&rev1=25&rev2=26

--------------------------------------------------

  Therefore, it will not only be easy to connect a - proprietary or open source - application
to the system. It will also be possible to replace one or another standard modules of Apache
ALOIS with the one that fits better the own special needs.
  
  == Conclusion ==
- Computer forensics is a domain with highly specialised tools from numerous vendors. What
is lacking is an integration platform, where all the data can be combined and be correlated.
Apache ALOIS is a SIEM and has already build in correlation. Since it is open source software,
it could be extended to a vendor-independent computer forensics cross-software platform. Moreover,
the fact that the software project is part of the Apache community, guarantees its independence,
a commercial-friendly licence (i.e. distribution free of charge) and a healthy development.
+ Computer forensics is a domain with highly specialised tools from numerous vendors. What
is lacking, at least in our opinion, is an integration platform, where all the data can be
combined and be correlated. A centralized data storage, the possibility of cross-correlation
and task-oriented user interfaces are but a few of the numerous advantages of such a platform.
To guarantee the integration of all the tools from the different vendors, an open source implementation
is reccomended.
+ 
+ Apache ALOIS is an open source SIEM and has already build in correlation and reporting.
Therefore, it is not necessary to invent the wheel another time to build a forensic platform.
Since it is open source software, it could be extended to a vendor-independent computer forensics
cross-software platform. Moreover, the fact that the software project is part of the Apache
community, guarantees its independence, a commercial-friendly licence (i.e. distribution free
of charge) and a healthy development.
  
  == Acknowledgment ==
  The Author would like to thank the open source community in general and especially the Apache
community for its great work and support. Also many thanks go to the Apache ALOIS team for
peer reviewing this paper.

Mime
View raw message