Realeyes IDS Features

• Scalable: The Realeyes IDS may include multiple sensors, distributed over a wide geographical area, reporting to a central database, which may be accessed by analysts who are also geographically separated. However, it may also be installed on a single laptop for temporary, focused monitoring.
• Standalone applications: The Realeyes IDS is not a web application and therefore does not require a web server. It does use the PostgreSQL database for storing definitions and intrusion data. All configuration, initialization, and management for the database is provided by the application. The IDS sensor and user interface are standalone applications that use SSL encryption to communicate with the database.
• Enterprise support: When used in an enterprise environment, the Realeyes IDS provides the following levels of access to data:
  • Administration
  • Regular analyst
  • Analyst with rule definition priveleges
  • Analyst with read only access
  Also, each sensor is defined with site and point of contact information, which may be easily displayed from the user interface.
• Trends analysis: The Realeyes IDS provides the capability of saving actual intrusions to be analyzed for trends.
• Statistics collection: The Realeyes IDS sensors accumulate statistics of session data. It is possible to designate specific hosts or ports for detailed statistics collection.
• Reports: The Realeyes IDS provides built-in reports on all collected data, including:
  • Open incidents
  • Closed incidents
  • Statistics
  • Site and point of contact information

For a detailed description of the Realeyes IDS, including screenshots and live demos, visit the Technology page. For up to date information on the status of the project, see the News page or read the Blog.