To protect critical information and to comply with government and industry regulations, organizations must monitor a myriad of commercial and custom applications on a variety of different platforms. Doing so is a complex, labor-intensive undertaking. The VeriSign Log Management Service allows customers to collect, analyze and store system and application logs to provide a deeper level of security monitoring as well as meet a broad array of compliance requirements, such as the Payment Card Industry (PCI) Data Security Standards, Sarbanes-Oxley, the Gramm-Leach-Bliley Act, the Health Insurance Portability and Accountability Act (HIPAA), and the Federal Information Security Management Act (FISMA).
"Our Log Management Service has received tremendous market response since its launch 2 years ago," said Scott Magrath, vice president and general manager for VeriSign® Managed Security Services. "As one of the first managed security service providers with a comprehensive log management offering, we've learned a lot about the challenges and complexity of deploying these technologies for large global organizations. That experience is reflected in the enhancements we're announcing today that will result in a more mature and flexible solution."
VeriSign Enterprise Security Services continues to invest in improving log management service delivery, including the establishment of a specialized professional services team for log management deployments. These teams help clients work through implementation challenges at the system and application-level as well as developing support for non-standard log sources. Investments have also been made to enhance reporting through web services APIs and enhanced correlation across the vast network, host, and application log sources being monitored by VeriSign. The correlation capabilities allow for broader visibility while the APIs allow for deeper drill-down into suspicious events that have occurred.
Through its business relationship with ArcSight, VeriSign has expanded its support for log management technology through its market leading Managed Security Services offering. VeriSign will now support the ArcSight Logger technology, enabling VeriSign to write parsers for clients' critical custom applications and access to the ArcSight library of more than 275 SmartConnectors. For customers of VeriSign Managed Security Services, this will enable faster integration of the service with customer-specific applications without the need for custom development. As part of the service VeriSign will deploy ArcSight C1000 connector appliances for event collection, which will decrease the cost of audit quality event collection for MSSP customers.
"VeriSign provides leading hosted log management services," said Chris Peterson, VP of Worldwide Channel Sales, ArcSight. "ArcSight is excited to work with VeriSign to offer customers this managed service. ArcSight log collection and management products, together with VeriSign's expertise, are a solid combination for the businesses looking to improve their security and compliance in a cost-effective manner."
The VeriSign Log Management service uses third-party technology -- deployed on the customer's premises -- to collect, aggregate, and pre-filter raw logs from the sources that VeriSign monitors. After this initial filtering, the technology uses the VeriSign® Security Defense Appliance (SDA) to forward potentially significant events and alerts to TeraGuard, VeriSign's information management architecture, for further analysis. VeriSign continues to support LogLogic technology through the Log Management service.
In its report, "Magic Quadrant for Security Information and Event Management," Gartner stated, "The SIEM market is driven by customer needs to analyze security event data in real time ... and to analyze and report on log data ..." The report further states, "The primary driver of the North American SIEM market continues to be regulatory compliance. European SIEM deployments have been focused on external threat monitoring."
VeriSign is positioned in the Leaders Quadrant of the Gartner Magic Quadrant for MSPPs, North American, 1H07.(1)
For more information about VeriSign Log Management Services, visit www.verisign.com/mss or call 650-426-5310.
VeriSign, Inc. (
Statements in this announcement other than historical data and information constitute forward-looking statements within the meaning of Section 27A of the Securities Act of 1933 and Section 21E of the Securities Exchange Act of 1934. These statements involve risks and uncertainties that could cause VeriSign's actual results to differ materially from those stated or implied by such forward-looking statements. The potential risks and uncertainties include, among others, the uncertainty of future revenue and profitability and potential fluctuations in quarterly operating results due to such factors as the inability of VeriSign to successfully develop and market new products and services and customer acceptance of any new products or services, including the VeriSign® Log Management Service; the possibility that VeriSign's announced new services may not result in additional customers, profits or revenues; and increased competition and pricing pressures. More information about potential factors that could affect the company's business and financial results is included in VeriSign's filings with the Securities and Exchange Commission, including in the company's Annual Report on Form 10-K for the year ended December 31, 2007 and quarterly reports on Form 10-Q. VeriSign undertakes no obligation to update any of the forward-looking statements after the date of this press release.
©2008 VeriSign, Inc. All rights reserved. VeriSign, the VeriSign logo, the checkmark circle, and other trademarks, service marks, and designs are registered or unregistered trademarks of VeriSign, Inc., and its subsidiaries in the United States and in foreign countries. All other trademarks are property of their respective owners.
(1) Gartner, Inc. "Magic Quadrant for MSSPs, North America, 1H07" by Kelly M. Kavanagh and John Pescatore, August 1, 2007