FerriskeyKey capabilities
Structured Events
Every event captures actor, target, IP address, user agent, trace ID, and event-specific details in a consistent JSON schema.
UUIDv7 Identifiers
Time-ordered IDs make events naturally sortable and allow efficient range queries without full-table scans.
Actor Classification
Events distinguish between user, service account, admin, and system actions for clear accountability.
OTel Integration
Trace IDs link SeaWatch events to spans in Jaeger, Datadog, or any OpenTelemetry-compatible system.
SIEM Ready
Forward events to Splunk, Elastic, or Datadog. The structured format maps directly to common SIEM schemas.
Compliance Evidence
Generate SOC 2, ISO 27001, and GDPR audit evidence — query by time range, actor, or event type.
How it works
Action occurs
A user logs in, an admin changes a realm setting, or a service account requests a token.
Event constructed
SeaWatch builds a structured event capturing who, what, when, where, and why with full context.
Persisted asynchronously
Events are written to storage without blocking the main request path — zero latency impact on authentication.
Query & export
Query events through the admin API by type, actor, or time range. Forward to your SIEM via webhooks.
Ready to use SeaWatch?
Full reference, configuration options, and examples in the documentation.