Why is the Software-as-a-Service (SaaS) model a good fit for log management?
Software-as-a-Service is a perfect model for non-business critical problems that are too messy to be solved on premise. People donít realize this, but the biggest SaaS company today is Google. No one wants to store terabytes of search data just to find a web site for a car wash. Same goes for log management. No one is going to make more money because they retain a complete archive of logs for the last 12 months or 7 years. But it still has to be done. Compliance requires it and itís hugely important for forensics. And while it may not contribute to earnings, it has real potential to prevent losses. How different would ChoicePoint investigation have been if they had retailed their full audit trail? Would the breach have been detected faster? The answer is, yes. Absolutely.
Log Management requires storage, databases and computing capacity that most companies are not prepared to deal with. The cost of buying storage is dwarfed by the amount of money and effort required to manage that storage and the amount of data increases every day as people collect more logs. Suddenly they have a lot more storage they need to manage and backup than they expected originally. Products they bought just a year ago begin to look inadequate. SaaS takes that entire problem offsite. Why bother thinking about how to manage all that complexity when you can just subscribe to software that has storage built into it?
Another interesting point is stranded capacity. There is a log management company out there that sells you 5-6 servers that run as a grid attached to a SAN. Their product is very fast, but most of the time those appliances sit idle and burn power. Truth is that most of the time you will not be searching through a huge archive of logs, so the computing capacity and power is essentially wasted until you actually need it. When you buy traditional software you are, in fact, contributing to global warming. With SaaS, youíre saving the world. Log Management under the SaaS model allows you to change the economics in a very powerful way. Customers are starting to figure that out and as soon as word gets out old school software will never seem quite the same.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.