About OPSEC

OPSEC is Check Point’s Open Platform for Security, which allows third-party applications like Security Manager to plug into the OPSEC framework using published APIs like LEA and CPMI.

The Security Manager Data Collector uses the Check Point Management Interface (CPMI) to communicate with Check Point management servers and Log Export API (LEA) to communicate with log servers. The data collected from the log servers is the foundation of Security Manager's Rule Usage Analysis feature.

LEA communication must be authenticated and encrypted using Secure Internal Communication (SIC). To use SIC, an OPSEC application object representing the Security Manager Data Collector must be created in the management server’s database and the resulting certificate retrieved.