Content Navigation footer

LOCUM

Software Services Limited

Secure & SecureAudit

Link to Home Page

Link to Sitemap

Link to News

Link to Product Downloads

Link to Computer Auditing

Link to Product Information

Link to Product Release Levels

Link to Services

Link to Contacts

Link to Frequently Asked Questions

Link to Company Profile

Link to Partners

Link to Product Resellers

Link to Escrow Agreement

 

 

Secure and SecureAudit provide consolidated reports for the Safe software package, offering a total security reporting solution for Security Administrators, auditors and administrators.

Security information is required by increasing numbers of people, from security officers, administrators and managers to internal and external auditors and state, federal and government examiners. Secure allows a Security Administrator to delegate the use of Secure to produce specific reports.

With SecureAudit, produced in conjunction with Unisys, Locum Software has provided a way of producing essential security reports for anyone, without any need for experience of the MCP platform. SecureAudit is run from a Windows-based PC and, with an easy-to-use interface and the elimination of technical jargon, it has never been easier to produce vital reports. Each report targets a specific security issue and presents the information in a concise, highly readable format. Optimized for fast execution, it is possible to run the full suite of reports in less time than it takes to make a cup of coffee.

 

 

Security Reporting

Security reports should inform the user of any activity or condition that could pose a security threat. The SUMLOG file is used by the MCP to log all system activity and is the logical source of information for security reporting. Unfortunately, the reporting facilities contained within standard software are not tailored to address the specific requirements of the security auditor; the reports are not restricted to security issues; the volume of extraneous information makes it difficult to isolate relevant details; and the use of such facilities demands specific technical knowledge for both operation and interpretation.

Secure and SecureAudit solves the ClearPath MCP security reporting problem by accessing both the SUMLOG file and the System Directory files to produces a comprehensive set of security reports that are relevant, non-technical, readable, and concise.

Secure and SecureAudit offer standard reports on a wide range of activities, events, and conditions, including:

  • Security violations
  • Logon violations
  • Privileged actions
  • File status changes
  • Run-time usercode changes

 

 

SecureAudit: Key Features

The data in the database may be presented in a variety of ways:

  • statistics
  • detailed data
  • graphical and correlation reports

Reports may be exported and imported between SecureAudit databases, and also exported as .csv files.

 

 

Secure: Key Features

  • Three modes of reporting- Batch, Interactive and Realtime
  • Individual sumlog reporting
  • Multiple sumlog reporting
  • Multi-user facility
  • 27 specific security reports

 

 

Three Modes of Reporting

Batch Mode

For the production of standard or regular reports.

Interactive Mode

For the production of ad-hoc reports. In Interactive Mode, SECURE provides a menu-driven interface allowing the user to generate reports from any CANDE or COMS terminal. Interactive reports may be directed to the terminal in paged format (Browse Mode), to a disk file for archiving of reports or to a print file. In the last case, SECURE provides facilities to control the routing of printed output.

Realtime Mode

For the monitoring of specified security events and violation. The CHAIN module will allow SECURE to monitor events on ALL or a selection of systems within the network. In Realtime Mode, the output options include routing to a port file interface so that events may be passed to a user-written or third-party program, for example, to generate alerts.

 

 

Individual Sumlog Reporting

Reports may be generated from the current SUMLOG or an 'old' SUMLOG. An 'old' SUMLOG is defined to be a SUMLOG file which has been 'released' by the MCP.

When producing reports based on a single SUMLOG, the user may specify a smaller time frame than that covered by the selected SUMLOG. If no time frame is specified, the entire SUMLOG is analysed.

 

 

Multiple Sumlog Reporting

A major feature of SECURE is time-based reporting; this enables the user to produce reports covering a specific time range without complicated SUMLOG consolidation. The only action that the user has to perform is to designate the time period; SECURE will identify the required SUMLOG files to be analysed (up to a maximum of 30).

 

 

Reports

The following reports are available:

Diskfile Privileges
Security Violations
Logon Violations
Disk File Accesses
Unauthorised File Access
Password Changes
Program Timestamp Verification
COMS CFILE Changes
File Status Changes
CENSOR Commands
Userdatafile Changes
CHAIN Audit
Privileged Actions
Security Policy Changes

Usercode Activity
Accesscode Activity
MCS Initialisations
Program Executions
System Commands
Session Information
Window Accesses
Run-time Usercode Changes
Installation Records
Overdue Users
SAFE Audit
Sumlog Integrity
Miscellaneous Security Actions

Most reports may be filtered, allowing the user to 'home-in' to a particular problem.

 

 

Free Trial

If you would like to see how SECURE can help secure your Unisys ClearPath MCP system, e-mail Locum@LocumSoftware.co.uk today to take advantage of our FREE no-risk trial offer.

SecureAudit:If you are already licensed for SECURE, SecureAudit is free of charge, and SIMPLEINSTALL will install the appropriate software in the host MCP environment. SecureAudit Client may be installed on your PC from its own installation package.

Locum SecureAudit Client is fully integrated with Unisys’s SecurityCenter product, but can also be run as a standalone executable.

 

The page was last updated on the 15th January 2009.