Data sheet

HP ArcSight Logger
Unify collection, storage, and analysis of logs for intelligence

Simplified forensic investigation

HP ArcSight Logger delivers a cost-effective universal log

management solution that unifies searching, reporting,
alerting, and analysis across any type of enterprise machine
data. This unified machine data can be used for compliance,
regulations, security, IT operations, and log analytics.

Built-in content for regulatory and security

compliance requirements

Comprehensive collection

Highlights
Comprehensive log collection and storage from
over 350 sources
Ultra-fast searching of logs in full-text

Support IT operational analytics

Store years worth of data through high
compression ratio of up to 10:1

Collect, categorize, and normalize log data from more than 350 distinct log-generating sources
for complete log analysis. HP ArcSight Logger supports data collection from the broadest set of
sources at high speed.

Scale to support billions of events per day

E xtend log management to security information
and event management (SIEM) solution

Ease of deployment and management

HP ArcSight Logger can be managed through a centralized management center (HP ArcMC), enabling
you to manage large deployments through a single console or manage small deployments with
limited resources. This lets you focus on your use cases and not the tool itself. HP ArcSight Logger
also comes as an appliance, software, and as a virtual appliance for deployment flexibility.

Ultra-fast forensics through full-text searching

HP ArcSight Logger leverages the HP ArcSight Common Event Format (CEF) that enriches the
machine data with rich metadata allowing you to perform full-text searches. Machine data is also
fully indexed and is available for fast searching and reporting via a simple search interface in your log
management solution. Interesting search patterns can easily be converted into real-time alerts. The
CEF data does not require familiarity with source-specific log formats thereby avoiding the need for
device or vendor-specific analysis or subject matter expertise.

Data sheet | HP ArcSight Logger

Non-stop monitoring on the go

Monitoring dashboards on the go with all new mobile app for HP ArcSight Logger. The new
mobile app connects to your log management solution and pulls the data from dashboard in
real-time to give you current snapshot of your organization. Use mobile app to give only view
access to your extended teams, support, or contractors avoiding giving unauthorized access.

Unmatched performance
HP ArcSight Logger is uniquely architected for breadth, depth, and speed of data collection
that Big Data demands. Logger enables collection of machine data from over 350 sources
from thousands of vendors, captures raw logs at rates of up to 100,000 events per second,
compresses and stores up to 42 TB of log data, and executes searches at millions of events per
second.

Non-stop and cost-effective compliance

HP ArcSight Logger ships with built-in content that can be used for cyber security, compliance,
application security, and IT operations monitoring. Additional content packsspecific to
regulations such as PCI and Sarbanes-Oxley (SOX)are available and mapped to well-known
standards, including National Institute of Standards and Technology (NIST) 80053, ISO-17799,
and SANS.

Flexible storage options

HP ArcSight Logger offers multiple storage options. In addition to RAID-enabled onboard log
management storage for appliances, both software and appliance solutions can also leverage
an existing NAS, direct attached storage (DAS), and SAN investment as the primary data store.
Regardless of whether the storage is onboard or off-board, log data is efficiently compressed at
an average ratio of 10:1.

About HP Enterprise Security

HP Enterprise Security is a leading provider of security and compliance solutions for the modern
enterprise that wants to mitigate risk in their environment and defend against advanced threats.
Based on market-leading products from HP ArcSight, Atalla, Fortify and TippingPoint,
HP Security Intelligence Platform uniquely delivers the advanced correlation, application
protection, and network defenses to protect todays hybrid IT infrastructure from sophisticated
cyber-threats.

Learn more at
hp.com/go/HPLogger

Sign up for updates

hp.com/go/getupdated

Share with colleagues

Rate this document

Copyright 20132014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. The only
warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein
should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein.
4AA4-4849ENW, October 2014, Rev. 3