Friday, September 29, 2006

NIST Log Management Guide 800-92 is Final!

So, NIST's "Guide to Computer Security Log Management" is out in its final form. It came a long way from the early version which I reviewed a few months ago (and, in many regards, it sucked) If you are involved with logs - and everybody is, to some extent (believe it or not!) - you need to check it out [PDF]. The only downside that I still perceive with the guide is an attempt to build a wall between security uses for logs and all other uses, such as troubleshooting and system management, for example.

And, last but not least, thanks to the NIST folks for that special mention :-)

Dr Anton Chuvakin