Log Management and Intelligence

Log Management And Intelligence

Log management (LM) comprises an approach to dealing with large volumes of computer-generated log messages (also known as audit records, audit trails, event-logs, etc.). LM covers log collection, centralized aggregation, long-term retention, log analysis (in real-time and in bulk after storage) as well as log search and reporting.

Log management is driven by reasons of security, system and network operations (such as system or network administration) and regulatory compliance.

Effectively analyzing large volumes of diverse logs can pose many challenges — such as huge log-volumes (reaching hundreds of gigabytes of data per day for a large organization), log-format diversity, undocumented proprietary log-formats (that resist analysis) as well as the presence of false log records in some types of logs (such as intrusion-detection logs).

Users and potential users of LM can build their own log management and intelligence tools, assemble the functionality from various open-source components, or acquire (sub-)systems from commercial vendors. Log management is a complicated process and organizations often make mistakes while approaching it.

Read more about Log Management And Intelligence:  Log Management Key Features and Technology, Deployment Life-cycle

Famous quotes containing the words log, management and/or intelligence:

    It is not growing like a tree
    In bulk, doth make man better be,
    Or standing long an oak, three hundred year,
    To fall a log at last, dry, bald, and sere:
    A lily of a day
    Is fairer far in May
    Although it fall and die that night;
    It was the plant and flower of light.
    In small proportions we just beauties see,
    And in short measures life may perfect be.
    Ben Jonson (1572–1637)

    No officer should be required or permitted to take part in the management of political organizations, caucuses, conventions, or election campaigns. Their right to vote and to express their views on public questions, either orally or through the press, is not denied, provided it does not interfere with the discharge of their official duties. No assessment for political purposes on officers or subordinates should be allowed.
    Rutherford Birchard Hayes (1822–1893)

    The accidental causes of science are only “accidents” relatively to the intelligence of a man.
    Chauncey Wright (1830–1875)