Here is an interesting piece from Computerworld written by Oracle CSO Mary-Ann Davidson. She indicates that NIST is taking the charge in defining a common audit log standard. Can it actually happen? Maybe, if NIST can leverage US government's purchasing power and demand support for such standard from vendors. I would not say that the chance is very high, but - unlike failed even standard projects like IDMEF and CIEL - this one seems to have the right players in place...
"Making the case for an audit standard" : "Having a common logging and auditing standard promotes the public good. "
No comments:
Post a Comment