Harvesting Logs and Events Using MetaCentrum Virtualization Services

Kód výsledku v IS VaVaI

<a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F63839172%3A_____%2F13%3A10130181" target="_blank" >RIV/63839172:_____/13:10130181 - isvavai.cz</a>

Výsledek na webu

<a href="http://indico.egi.eu/indico/materialDisplay.py?contribId=147&sessionId=14&materialId=slides&confId=1222" target="_blank" >http://indico.egi.eu/indico/materialDisplay.py?contribId=147&sessionId=14&materialId=slides&confId=1222</a>

DOI - Digital Object Identifier

—

Jazyk výsledku

angličtina

Název v původním jazyce

Harvesting Logs and Events Using MetaCentrum Virtualization Services

Popis výsledku v původním jazyce

The talk describes the design and implementation of MetaCentrum's (Czech NGI's) new security infrastructure service. To implement its everyday procedures, a demand emerged for a central and flexible tool to gather and analyze system logs from hundreds ofnodes spread across multiple institutions in the Czech Republic. The selected solution is built on top of existing tools to gather, transfer, store and analyze logs. But we have identified several areas that the current tools do not properly cover. Thenew service is able to work not only in an automated mode (predefined patterns and alarms) but also in a generic mode. It allows to perform interactive queries to harvest the logs based on actual needs of operators or security officers. The whole storage, indexing and querying infrastructure is operated on top of MetaCentrum virtualization service. The resources are not decicated but allocated on-demand from the NGI resource pool.

Název v anglickém jazyce

Harvesting Logs and Events Using MetaCentrum Virtualization Services

Popis výsledku anglicky

The talk describes the design and implementation of MetaCentrum's (Czech NGI's) new security infrastructure service. To implement its everyday procedures, a demand emerged for a central and flexible tool to gather and analyze system logs from hundreds ofnodes spread across multiple institutions in the Czech Republic. The selected solution is built on top of existing tools to gather, transfer, store and analyze logs. But we have identified several areas that the current tools do not properly cover. Thenew service is able to work not only in an automated mode (predefined patterns and alarms) but also in a generic mode. It allows to perform interactive queries to harvest the logs based on actual needs of operators or security officers. The whole storage, indexing and querying infrastructure is operated on top of MetaCentrum virtualization service. The resources are not decicated but allocated on-demand from the NGI resource pool.

Druh

O - Ostatní výsledky

CEP obor

IN - Informatika

OECD FORD obor

—

Projekt

<a href="/cs/project/LM2010005" target="_blank" >LM2010005: Velká infrastruktura CESNET</a><br>

Návaznosti

P - Projekt vyzkumu a vyvoje financovany z verejnych zdroju (s odkazem do CEP)

Rok uplatnění

2013

Kód důvěrnosti údajů

S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů