Would you like to learn how does Microsoft maintain its security audit records effectively? As you may imagine, the size of such data could be extremely large. The one used at Microsoft is 27 Terabytes and counting.
The Microsoft Information Security team uses an internal tool called Information Security Consolidated Event Management (ICE) version 3.0 to gather forensic data from more than 85 proxy servers around the world. Powered by Microsoft SQL Server 2005, this 27-terabyte data management system collects different types of global evidence, such as inbound and outbound e-mail traffic, log-on events, and Web browsing, into a single database.
If you’re interested in this topic, please register for the upcoming webcast. Details below:
· Title: How Microsoft IT Uses SQL Server 2005 to Power a Global Forensic Data Security Tool (Level 300)
· Date: Tuesday, June 19, 2007
Best Regards, Bilal Okour