SECURE provides consolidated reports for the SAFE software package and provides Security Administrators and auditors with the total security reporting solution.

The need for security information may not be restricted solely to the Security Administrator. In many large organisations, there may be several departments that require to produce specific security reports. These departments may include:

• Security Officers, Administrators and Managers
• EDP Internal and External Auditors
• State, Federal or Government Examiners

The Security Administrator may delegate the use of SECURE to individuals within such departments to produce specific reports.

Security Reporting

Security reports should inform the user of any activity or condition that could pose a security threat. The SUMLOG file is used by the MCP to log all system activity and is the logical source of information for security reporting. Unfortunately, the reporting facilities contained within standard software are not tailored to address the specific requirements of the security auditor; the reports are not restricted to security issues; the volume of extraneous information makes it difficult to isolate relevant details; and the use of such facilities demands specific technical knowledge for both operation and interpretation.

SECURE solves the ClearPath MCP security reporting problem. SECURE accesses both the SUMLOG file and the System Directory files and produces a comprehensive set of security reports that are:

• Relevant - each targets a specific security issue
• Non-technical - technical jargon is avoided
• Readable - layouts are clear and friendly
• Concise - extraneous information is omitted
• Fast-executing - efficient processing

Key Features

• Three modes of reporting- Batch, Interactive and Realtime
• Individual sumlog reporting
• Multiple sumlog reporting
• Multi-user facility
• 27 specific security reports

Three Modes of Reporting

Batch Mode

For the production of standard or regular reports.

Interactive Mode

For the production of ad-hoc reports. In Interactive Mode, SECURE provides a menu-driven interface allowing the user to generate reports from any CANDE or COMS terminal. Interactive reports may be directed to the terminal in paged format (Browse Mode), to a disk file for archiving of reports or to a print file. In the last case, SECURE provides facilities to control the routing of printed output.

Realtime Mode

For the monitoring of specified security events and violation. The CHAIN module will allow SECURE to monitor events on ALL or a selection of systems within the network. In Realtime Mode, the output options include routing to a port file interface so that events may be passed to a user-written or third-party program, for example, to generate alerts.

Individual Sumlog Reporting

Reports may be generated from the current SUMLOG or an 'old' SUMLOG. An 'old' SUMLOG is defined to be a SUMLOG file which has been 'released' by the MCP.

When producing reports based on a single SUMLOG, the user may specify a smaller time frame than that covered by the selected SUMLOG. If no time frame is specified, the entire SUMLOG is analysed.

Multiple Sumlog Reporting

A major feature of SECURE is time-based reporting; this enables the user to produce reports covering a specific time range without complicated SUMLOG consolidation. The only action that the user has to perform is to designate the time period; SECURE will identify the required SUMLOG files to be analysed (up to a maximum of 30).

Reports

The following reports are available:

Most reports may be filtered, allowing the user to 'home-in' to a particular problem.

Free Trial

If you would like to see how SECURE can help secure your Unisys ClearPath MCP system, e-mail Locum@LocumSoftware.co.uk today to take advantage of our FREE no-risk trial offer.