Forensic Soundness of Log Data
Assuria Log Manager CCTM Accreditation Achieved
International cyber-security vendor Assuria has confirmed that its highly-prized Log and Security Information and Event Management (SIEM) product, Assuria Log Manager (ALM),has been awarded CESG Claims Tested Mark (CCTM) certification, the UK Government quality mark for private and public sector.
The Assuria Log Manager (ALM) solution, which maintains a forensic audit trail of original data from any system, server or device, underwent intensive testing at the leading independent testing laboratory, ENEX Test Lab, which is authorised by CESG to validate the functionality claims made by vendors thus giving purchasers confidence that the product has been independently tested and the results verified by CESG.
The innovative software product developed from over 20 years of top-level industry expertise, securely collects, stores, translates and analyses unaltered audit and event log data from any system, server or device, giving a unique insight into all user and system activity.
Assuria Log Manager is already in use in Commercial Organisations as well as in the UK Government space, where it has helped customers to comply with the strict guidelines laid out in CESG’s comprehensive Good Practice Guide Number 13, (GPG-13), the Protective Monitoring guide for UK public sector IT.
Davina Whitworth, Corporate Strategy Manager at Luton Borough Council, said the award “endorses our decision two years ago to install Assuria Log Manager software to help meet our GCSX Code of Compliance requirements”.
Malcolm Higgins, at ENEX Test Lab, confirmed “Assuria Log Manager was rigorously tested by ENEX, in accordance with CESG policy, and passed all tests at the highest level. We are happy to confirm this product is highly satisfactory in fulfilling its stated functions of protective monitoring, safeguarding information systems, capturing original log data and monitoring user activity”.
Terry Pudwell, MD at Assuria, said the news comes at a time when recent data-breaches and employee misuse of computers have thrust public-sector cyber-security into the spotlight. “With recent Freedom of Information requests revealing widespread misuse of police computers, and at least 16 cases of sensitive MOD data being leaked through employee activity last year, it is vital that the public-sector ensures that it is using products that have been independently tested and verified by CESG. Our ALM and Assuria Auditor tools give organisations an in-depth portal into all past and present user activity, across any systems, servers or devices. ALM, almost uniquely in the market today, manages and securely collects log data directly from any system, server or device without relying on the customer to set up log forwarding, ensuring data is preserved in original and forensically sound form, to provide a bullet-proof audit-trail.”.
Assuria Log Manager and the company’s Assuria Auditor product are currently in use across 30 countries, by major public and private-sector bodies, including organisations such as BAE Systems, Gulf International Bank and Johns Hopkins University Applied Physics Labs.
Assuria Announces Partnership with ZeroDayLab Ltd
Reading, UK, April 16th, 2013: Assuria and ZeroDayLab announce partnership agreement to include Assuria technology in ZeroDayLab’s Total Security Management solutions for customers in the UK, South Africa and Middle East.
April 2013: Assuria and Deep Secure announce a technical collaboration and commercial partnership that will provide customers with a nexus of solutions engineered to look after the core cyber security interests of customers.
Assuria, the UK based global cyber security software provider is delighted to announce the launch of the first commercially available solution for examining and correcting file structure and removing harmful content from file objects.
April 2013 - Assuria Launches New CyberSense® Enterprise Scanner V2.0 - bringing enterprise security defence to the wider market.
Assuria Ltd Announces New Regional Manager in Brazil
Recognising significant growth potential in the Brazilian Region, Assuria Ltd appoints a new Regional Manager.
OpenSSL Security Advisory 19Apr 2012 (CVE-2012-2110)
On 19th April 2012 the OpenSSL project published the above advisory. Assuria's products use TLS and cryptographic functionality provided by this widely-used OpenSSL library and this information release is to update customers about this matter.
Can Syslog be trusted for Cyber security monitoring? Assuria releases a brand new White paper on the subject.
Assuria has now released the ALM Log Data Exporter, allowing all organisations to reap the benefits of Assuria Log Manager's forensic log management and log data collection mechanisms, even if they have already invested in a SIEM or Analytics System from another vendor!
Assuria Log Manager chosen by prestigious US research and technology center to meet mandated audit log review requirements.
Gulf International Bank selects Assuria Log Manager
Reading, United Kingdom, August 2011 – Assuria Ltd is pleased to announce that Gulf International Bank has selected Assuria Log Manager for security monitoring.
NI+C NetSystem to represent Assuria in Japan.
Luton Borough Council Selects Assuria Log Manager for CoCo Compliance.
BAE Systems and Assuria announce an investment and marketing programme that will deliver Cyber Security solutions worldwide.