Nowadays security problem is the main issue due to the unlawful practice of a user or hacker through internet. Every day when we watch news in television or read a newspaper, we get to know that a company's secret data is leaked outside. In these circumstances, the most important thing that can be done is to work in a way that secures trust and stability of a system.

The trust and stability can be achieved when we analyze various information like system error, hacking process, traffic, etc., and take appropriate action. This various information can be analyzed effectively by an administrator who knows the use of a log file. But, since log file cannot be understood easily you have to use a powerful log analysis tool which fulfills your security requirements.

• To establish the log custody as per the security guidelines set by the Government
  • The need to maintain a system for analysis and backup of logs
  • To keep backup of logs for minimum 6 months and to analyse logs from Firewall, IDS and VPN daily
  • Logs to be maintained for un-authorized access efforts

• Absence of log files analysis methodology
  • Since the Firewalls logs are huge and will be in different format, it is difficult to analyse and identify the threat
  • It is difficult to obtain the statistics of user/service/protocol etc.
  • The difficulty to grasp the whole scenario based on analysis

• Insufficient manpower dedicated to handle security issues
  • Lack of budget to allocate manpower and system setup for log analysis