Collection

Support for log-collecting performance of 50,000 EPS(Event Per Second) for one unit host (based on syslog)

Adjusting log-collecting speed of log-collecting agents according to CPU workload of log-collecting servers

Support for encrypted communication between log-collecting agents and log-collecting servers

Support for multiple protocols and methods used for log collection (log-collecting agents, syslog, SNMP, FTP, SCP, SFTP, HTTP, JDBC, etc.)

Support for relay processing in disrupted log collection using FTP/SCP/SFTP protocols

Analysis

Supporting big data processing through distributed search engine

Support for defining PROPERTY about new log formats and for analyzing them.

User-defined correlation analysis of non-conformative logs based on dynamic analytic chains

Log analysis supporting multiple criteria (event frequency, keyword search, PROPERTY frequency/search, TIMELINE, etc.)

In-depth log searching based on user-defined queries (supporting logic operation such as AND, OR, <, >, =, ! )

Real-time detection and analysis of correlation

Administration

E-MAIL, SMS, POPUP alarm

P2P/VIP-based dual failover

User-defined dashboard

Providing compliance guide to storing logs

Support for defining user-specific criteria for collecting logs

Support for separation of duty between administrators and users

Reporting

Automatic report generation supporting scheduling on the daily/weekly/monthly basis

Multiple report formats supporting Excel, PDF, Word, HWP, etc.

User-specific customized report generation (supporting user-defined query and user-specific schedule for report generation)