Model: NitroView 2000 ESM

Part #: NS-ESM-2260-R

The NitroView 2000 ESM provides advanced correlation and analysis of relevant security information collected from IDS, IPS, firewalls, servers, hosts, or virtually any other device. By unifying all relevant security information together, NitroView is able to provide Unified Security Management (USM), combining and ehancing the functions of:

  • Log Managment
  • Security Event Management (SEM)
  • Security Information Management (SIM)
  • Network Behavior Analysis (NBA)
  • Anomaly Detection

NitroView uses an advanced, highly responsive web-based User Interface to provide near real-time analysis and reporting of both live data (events as they occur) and deep forensics (events collected over months or years).

NitroView ESM is an essential tool in managing the data needed for regulatory compliance efforts, including GLBA, HIPAA, FERPA, FISMA, SoX, and PCI. Easily use NitroView's granular data stores to generate compliance reports using pre-defined templates or custom reports. Because NitroView preserves more data over time than most SIEM systems, the validity of each report is maintained over the entire audit history.

The NS-ESM-2260-R requires one or more NitroView Receivers for the collection of third party feeds.

Specifications

Operating Modes

  • Network Flow collection, analysis and correlation
  • Security Event collection, analysis and correlation
  • Log collection, analysis and correlation
  • Common data management for flow, event, and log data for cross-analysis and correaltion of disparate data types

Analysis Methods

  • Counts, Sums, Averages
  • Time Correlation of data for baselines, Trends, Deviations
  • Time Correlaton for historical context of log, event, flow data
  • Data Correlation for situational context of log, event, flow data

Management Functions

  • Log Management
  • Security Information Management (SIM)
  • Security Event Management (SEM)
  • Network Flow Analysis
  • Network and/or Event Anomaly Detection
  • Network Capacity Planning
  • Compliance Reporting
  • "Manager of Managers" for third-party event management

Dimensions

  • size: 3.5"H x 17.5"W x 27"D

Power

  • power: 200W, 100/240 VAC, 50/60Hz
  • vibration: ASTM D 999-86

Certifications & Safety

  • safety: EN 60950/IEC 60950-Compliant, UL Listed (USA), CUL Listed (Canada), TUV Certified (Germany), CE Marking (Europe)
  • regulatory: FCC Class B, EN 55022 Class B, EN 61000-3-2/-3-3, CISPR 22 Class B
  • common_criteria: v2.3 EAL3

Performance Specifications

  • processor(s): 2 x 3GHz (dual core)
  • memory: 4GB
  • total storage: 1.5 TB
  • usable storage (after RAID): 1 TB
  • number of drives: 3

Fail Safe Features

  • RAID Storage
  • Redundant Power

Compliance Reporting

Visit our Compliance page for more detail on regulatory compliance and reporting, including sample reports.

  • NitroView Report: SOX - System Test Data, Source Code Access, Logon Activity, Account Reports, Admin & Control of Systems, etc.
  • NitroView Report: PCI - Log initiation, Admin activity, Access to Card Holder Data, etc
  • NitroView Report: NISPOM - User Account Deletion, Pasword Events, System Access, etc.
  • NitroView Report: HIPAA - User Access, Logins, Modifications, Policies, EMR Access, etc.
  • NitroView Report: GLBA - User Access to Customer Data, Policy & Password events, Admin access and activity, etc.
  • NitroView Report: FISMA - Session Terms, Login failures, Disabled Accounts, etc.
  • NitroView Report: BASEL II - System Test Data, Source Code Access, Password and Login events, Foreign Domain activity, Control of Audit, Software, Evidence, etc.
  • NitroView Report: Applications - Mindows User Rights Modification, System Reboots, Domain Modifications, etc.
  • ... and more

    • Supported Third party Feeds

    (requires NitroView Receiver)

    • NitroSecurity, NitroSecurity SNMP
    • NitroSecurity, NitroGuard IPS
    • NitroSecurity, NitroGuard IPS
    • NitroSecurity, NitroGuard IPS
    • NitroSecurity, nitroFlow
    • Cisco, NetFlow
    • sFlow, sFlow
    • Juniper, jFlow
    • Check Point, Check Point Edge W32 and WU, opsec
    • Check Point, Check Point VPN-1 Edge, v4.x, opsec
    • Check Point, Check Point Smart Center Enterprise Pro, opsec
    • Check Point, Check Point Enterprise and Enterprise Pro, opsec
    • Check Point, Check Point FW-1 Limited, v4.0(sp5), v41(sp1), opsec
    • Check Point, Check Point FW1, NG, NGX Standard All versions, opsec
    • Check Point, Check Point HA VPN-1 v4.0(sp5), v41(sp1), opsec
    • Check Point, Check Point VPN Pro v4.0(sp5), v41(sp1), opsec
    • Check Point, Check Point VPN-1 Express v4.0(sp5), v41(sp1) opsec
    • Check Point, Check Point Express opsec
    • Cisco, Cisco IDS (4.x+ protocol) v4.2(2), RDEP, SDEE
    • Cisco, Cisco IDS Stand-alone (3.x protocol), syslog
    • Cisco, Cisco Routers/Switch ACL, IOS FW and IOS IDS (3.x protocol) syslog
    • Cisco, Cisco 6xxx Routers/Switch ACL, IOS FW and IOS IDS (3.x protocol) syslog
    • Cisco, Cisco 7xxx Routers/Switch ACL, IOS FW and IOS IDS (3.x protocol) syslog
    • Cisco, Cisco ASA v4.x -v7.x syslog
    • Cisco, Cisco PIX 501, 505, 506, 506E, 515, 520, 535 v4.x -v7.x syslog
    • Cisco, Cisco VPN Concentrator v4.x -v7.x syslog
    • CyberGuard, CyberGuard FS v4.2,v4.3, v5.0 syslog
    • CyberGuard, CyberGuard SGv4.2,v4.3,v5.0, syslog
    • CyberGuard, CyberGuard SL v4.2,v4.3,v5.0, syslog
    • Fortinet, Fortinet FortiGate v2.5 and v2.8 syslog
    • Gauntlet, Gauntlet Firewall syslog
    • Hewlett Packard, HP ProCurve all models firmware 7.x and 8.x syslog
    • Juniper Networks, Juniper Netscreen SSL VPN syslog
    • Juniper Networks, Juniper Netscreen Firewalls (all series) syslog
    • Juniper Networks, Netscreen-IDP syslog
    • Juniper Networks, Jun OS Routers
    • Juniper Networks, IC4000, IC6000 V2.0
    • McAfee, IntruShield / WebShield syslog
    • Nokia, Nokia IP syslog
    • Nortel Networks, Contivity VPN syslog
    • Secure Computing, Sidewinder G2 syslog
    • Snort, IDS Sensor (all models) syslog
    • SonicWALL, Firewall v4.1 and v5.x syslog
    • SourceFire, NS syslog
    • Symantec, Symantec Enterprise Firewall (syslog only) v7.04 syslog
    • Symantec, Symantec Gateway Security (syslog only) v7.0 and v8.0 syslog
    • TippingPoint, TippingPoint Unity syslog
    • TopLayer, TopLayer Attack Mitigator v3.x syslog
    • IronMail, All models
    • IronPort, All models
    • McAfee, WebShield Version 1.8 and above
    • SideWinder, All models All ver syslog
    • WatchGuard, Firebox and X series firmware 4.x through 7.5
    • Microsoft, Exchange 2000 and 2003 WMI
    • BalaBit, Syslog NG Solaris 2.6, 2.7 (Unix) syslog
    • Enterasys, Dragon 2.x and above
    • Foundry, Pending support
    • Extreme, BlackDiamond, Alpine and Summit versions 6.x and above
    • Barracuda, All models firmware 2.x and above
    • BlueCoat, SG All models firmware 2.x and above
    • Linux, Red Hat and Generic Linux formats, Redhat Enterprise 4.x and 5.x, Fedora 4.x, 5.x and 6.x
    • Novell, Novell Netware Version 5.x through 6.5
    • NitroSecurity, Custom Syslog Parser
    • Microsoft, Windows (WMI)
    • Microsoft, Windows (WMI)
    • Airdefense, Airdefense
    • Apache, Apache
    • Apache, Apache
    • Apache, Apache
    • Arbor, Peakflow DoS
    • Arbor, Peakflow X
    • Cisco, CatOS
    • Cisco, CatOS
    • Cisco, Cisco ACS
    • Cisco, Cisco CCA
    • Cisco, Cisco Clean Access
    • Cisco, Cisco Content Engine
    • Cisco, Cisco CSA
    • Cisco, Cisco CSA
    • eEye, Retina Scanner
    • Enterasys, Dragon
    • Enterasys, Dragon Sensor
    • Entercept, Entercept HIDS
    • Entercept, Entercept HIDS
    • Harris, Stat Scanner Professional Edition
    • HP, HP-UX (Hewlett-Packard)
    • HP, HP-UX (Hewlett-Packard)
    • HP, HP-UX (Hewlett-Packard)
    • IBM, AIX OS
    • IBM, AIX OS
    • Info Express, Cyber Gatekeeper LAN
    • Info Express, Cyber Gatekeeper LAN
    • IBM, ISS Desktop Protector
    • IBM, ISS Desktop Protector
    • IBM, ISS Internet Scanner
    • IBM, ISS Real Secure Network Sensor
    • IBM, ISS Real Secure Server Sensor
    • Juniper, Netscreen Security Manager
    • LANcope, Stealth Watch
    • McAfee, ePolicy Orchestrator (EPO)
    • McAfee, ePolicy Orchestrator (EPO)
    • McAfee, Foundstone Scanner
    • McAfee, Virus Scan
    • Microsoft, IIS
    • Microsoft, IIS
    • Microsoft, ISA
    • Microsoft, ISA
    • Microsoft, ISA
    • Microsoft, ISA
    • Microsoft, ISA Server
    • Microsoft, ISA Server
    • Microsoft, ISA Server
    • Microsoft, Operations Manager
    • Microsoft, Microsoft SQL Server
    • Mirage, Counterpoint
    • nCircle, IP360 Scanner
    • Nessus, Nessus Scanner
    • NetForensics, DataOne
    • netIQ, Security Manager
    • Netscape, Enterprise Web Server
    • Netscape, Enterprise Web Server
    • Oracle, Oracle
    • Qualys, Qualys Guard Scanner
    • Radware, DefensePro
    • Red Hat, Red Hat Linux OS Events
    • Red Hat, Red Hat Linux OS Events
    • Red Hat, Red Hat Linux OS Events
    • Rippletech, Rippletech Informant
    • NitroSecurity, NitroGuard Database Monitor
    • RSA, Authentication Manager
    • Solaris, Solaris OS Events
    • Solaris, Solaris OS Events
    • Squid, Squid Proxy
    • Stonesoft, Stonegate Firewall
    • Stonesoft, Stonegate IPS
    • Symantec, Symantec Anti Virus
    • Symantec, Symantec Endpoint Security
    • Symantec, Symantec Enterprise VPN
    • Symantec, Symantec HIDS
    • Symantec, Symantec HIDS
    • Symantec, Symantec Intruder Alert
    • Symantec, Symantec Intruder Alert
    • Symantec, Symantec Mail Security for SMTP
    • Symantec, Symantec ManHunt
    • Trend Micro, Trend Micro Control Manager (IMSS, IWSS)
    • Trend Micro, Trend Micro Control Manager (IMSS, IWSS)
    • Trend Micro, Trend Micro Control Manager
    • Trend Micro, Trend Micro Control Manager
    • Tripwire, Tripwire For Server
    • Tripwire, Tripwire NIDS
    • Type 80, SMA_RT
    • Type 80, SMA_RT
    • Websense, Websense Enterprise
    • Zonelabs, Integrity




    These icons link to social bookmarking sites to help share this content.
    • share this page:
    • bodytext
    • del.icio.us
    • Reddit
    • Slashdot
    • Technorati
    • Propeller