1. /
  2. Security Response/
  3. Glossary/
  4. event filtering

Glossary

A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | _1234567890

event filtering

The discarding of events according to a user-defined rule set.

Filtering events at the event collector reduces event traffic and storage by identifying and eliminating false positive, or otherwise unwanted, events.

Filtering events at the archive prevents the storage of unessential event data.

Filtering events at the correlation manager eliminates the correlation of events that need not be considered for incident creation purposes.

Filtering events at the event forwarder allows for selective event forwarding to another Information Manager for correlation or archiving purposes.