Hello all

I have some questions regarding compliance points we have received in an RFP to check against SSIM. I hope you assist me:

1) The system should have the ability to collect logs without enabling "Audit Trail" in database

2) The solution should have the ability to process data from the last point of failure

3) Stateless and stateful rule based correlation (I don't know what is this exactly!)

4) The solution should have the ability to deal with Oracle e-business suite Database & Application tier specific events such as (what forms/views are assigned to users, who is accessing confidential information, did the DBA granted others access to confidential information)

5) The solution should have the ability to deal with Microsoft File and Print Sharing security events such as (who have done changes in network shared folder “DFS”, who have deleted or modified a specific folder / file, when did they’ve done it and what confidential documents were printed …etc.)

6) Support for the folowing systems:

     - Microsoft Windows 2003 Storage Server build 3790

     - Huwaie VRP (an operating system)

     - Blue-Coat IOS

     - NetScreen IOS

     - Informix Database

     - Oracle Business Suite 11

     - Citrix

     - Cisco IPCC

     - Microsoft Office Communicator

     - TACACS+

     - AAA

Many thanks in advance...