09/13/2007

eIQnetworks¨, Inc., a global provider of next-generation security information management (SIM) solutions, today announced Open Log Format (OLF), the industryÕs first open source event logging standard. Unlike proprietary standards, the multi vendor-supported OLF promotes interoperability that enables organizations to more easily manage and understand the log data collected from network devices, systems and applications. OLF is available for immediate download at www.openlogformat.org.

Evolving security challenges coupled with compliance and regulatory mandates have made it essential for organizations to collect, monitor and analyze log data across the enterprise. Unfortunately each device, system and application uses a unique and proprietary format, making it almost impossible to decipher log data. OLF offers the industry an alternative that eases the log collection and management process.

ÒSecurity and compliance initiatives are now a permanent, bottom-line business concern, fueled by recent large-scale data breaches and resulting fines,Ó said Jon Oltsik,

senior analyst, Information Security at Enterprise Strategy Group. ÒAn open source OLF can help advance compliance management by enabling organizations to easily incorporate and manage critical security log information, enhance IT security management, combat threats and meet regulatory mandates.Ó

OLF provides the following key benefits for end users and technology vendors:

• Provides a fully extensible open source event logging standard across all devices, systems and applications that vendors can adopt to support logging requirements.



• Allows vendors to easily add additional log details to showcase specific solution functionality.



• Removes concerns around log format compatibility with existing SIM technologies.



• Eliminates the need to create custom connectors to integrate and interpret vendor- specific logs, as is the case with proprietary log formats.

ÒOLF is an important advancement in the IT security industry as it offers organizations the ability to quickly and reliably integrate security events from their computers and network security devices,Ó said Dave Lovejoy, GCC product manager at Secure Computing. ÒUltimately, this benefits the marketplace as a whole, promoting interoperability and thereby advancing security.Ó

OLF does not require certification and is available for any vendor or organization to adopt at no cost. A number of vendors including Astaro, Clavister, Cyberoam, iPolicy Networks, Secure Computing and Top Layer Networks have pledged support for the OLF standard.

ÒTop Layer believes interoperability is of great benefit to the industry,Ó said Mike Paquette, chief strategy officer at Top Layer Networks. ÒWe support OLF because it offers organizations the ability to quickly and reliably integrate security events from their computers and network security devices.Ó

ÒTo date, the ability to view enterprise-wide log data has been limited by proprietary log formats and partnerships between SIM and other technology vendors,Ó said Sridhar Alla, chief architect at eIQnetworks. ÒWe encourage all vendors to adopt OLF as a fully extensible, open standard that makes it easier for end users to comprehend and manage the volumes of data being collected across the enterprise.Ó