arcsight + vaultcore solution brief
TRANSCRIPT
ArcSight + VaultCoreSolution Brief
» HIGHLIGHT
Fornetix® VaultCore™ encryption key management integrates with Micro Focus® ArcSight™ security information and event management.
» THE SOLUTION
Fornetix VaultCore offers a seamless collaboration with Micro Focus ArcSight to incorporate log material relating to key management operations into a broader security monitoring strategy.
Fornetix VaultCore integrates with Micro Focus ArcSight’s Security Information and Event Management (SIEM) system by providing operational logs from its key management ecosystem to the SIEM. These logs represent critical touchpoints in the security of an organization’s encrypted data and the management of the corresponding keys.
Using the Common Event Format (CEF) ensures compliance with industry standards for increased interoperability with other systems on your network. Utilizing ArcSight SIEM for log management allows organizations to have a centralized and consolidated dashboard to monitor logs from applications across the network for more efficient monitoring and detection capabilities. With this dynamic integration, you will have the ability to rapidly correlate security events, detect anomalies across systems, and develop actionable information to mitigate threats.
By introducing VaultCore to your SIEM strategy, you can incorporate logs from a centralized key manager to monitor who is accessing and altering encryption and key management programs.
» ARCHITECTURE
Page 1 of 1© 2020 Fornetix
Key Management Interoperability Protocol (KMIP)
Hardware Appliance or Virtual Appliance
Policy Creation
Device Hierarchy & Relationship
CEF Logging
Key Lifecycle Management(Creation, Storage, Expiration, Revocation, Rotation)
Hardware SecurityModule (HSM)
ServerClients
DataStorage
Virtualizationand HCI
IoTDevices
VaultCorePlugin Gateway
Common Event Format (CEF)Public Key Cryptography Standard 11 (PKCS#11)NetworkingDevices
CloudProviders
CertificateAuthorities
Non-KMIPDevices
APIs
Security Information andEvent Management (SIEM) including