iknoplex Log Manager offers a unique combination of innovative features that are essential for high-volume enterprise environments:

Grid-based computing - iknoplex LM operates in a cluster made up of small servers. The computational power of such a configuration can reach that of a supercomputer, but at a significantly lower cost. Externally, the cluster appears as a single virtual entity. The absence of shared components allows obtaining a fault tolerant behavior that is similar to that of RAID hardware.

Continuous Parallel Processing - Acquisition, processing, loading and query processes are designed to operate in parallel, optimizing the exploitation of available hardware. Log data can be loaded on a 24 hour basis without interfering with user queries. Priority management ensures that selected log sources are available for querying within the requirements of realtime analysis and correlation.

Unified Event Model - Along with its original form, acquired logs are structured according to a standard data model that is universally applicable to any security and audit event. The model includes taxonomy for common types of events and context information that flexibly fulfills all correlation needs required for complex analysis.

Column-oriented DB - The architecture of the database used by iknoplex LM is optimized for batch load and interactive read transactions. This is accomplished by storing the data by column rather than by row. Querying the database is on average 100 times faster than for traditional DBMS and is not affected the number of columns in the tables.

Data  compression - The homogeneity in terms of form and content of the data within a single event attribute allows to apply compression with great results. Compared to the original log size, iknoplex LM requires 1/10th of the memory to store the data on disk.

SQL - The iknoplex LM database is queried with SQL, a powerful language for the analysis and extraction of data. As an industry standard, SQL allows to interface iknoplex LM with business intelligence and reporting products which offer great user interfaces for building applications such as decision support, data mining, dashboards, etc.