SmartEvent has several components that work together to help track down security threats. What is the function of the Correlation Unit as one of those components in the architecture? The Correlation Unit:
- A: connects with the SmartEvent Client when generating reports.
- B: analyzes each log entry as it enters a log server, according to the Event Policy; when a threat pattern is identified, an event is forwarded to the SmartEvent Server.
- C: collects syslog data from third party devices and saves them to the database.
- D: correlates all the identified threats with the consolidation policy.