In today's security-conscious environment, the eTrust Audit system encounters security-related obstacles as enterprises try to deploy it across large networks. The flexible implementation possibilities available with eTrust Audit let you install the Client components on various systems. For example, you might install recorders on remote systems and the rest of the Client components on a centralized server that routes events from a number of recorders. If any of these recorders are outside your firewall, you might experience some of the following problems:
eTrust Audit uses RPC to send events to the Router, deliver policies from the Policy Manager, and forward events to Collector and Security Monitor (OCRA). If any of these components are deployed across a firewall, the system may fail due to the firewall blocking RPC traffic. One solution is to use fixed TCP ports and open these ports on the firewall. However, the question of data protection against network spoofing or tampering remains open.
Copyright © 2010 CA. All rights reserved. | Email CA about this topic |