Audit logging standard - a chance of emergence

by Anton Chuvakin

Admins spent hours looking at logs and sorting thru various log "esoterica." I am sure many of my readers ever exclaimed 'there gotta be a standard'...

Here is an interesting piece from Computerworld written by Oracle CSO Mary-Ann Davidson. She indicates that NIST is taking the charge in defining a common audit log standard. Can it actually happen? Maybe, if NIST can leverage US government's purchasing power and demand support for such standard from all kinds of log-producing device and software vendors. I would not say that the chance is very high, but - unlike failed even standard projects like IDMEF and CIEL - this one seems to have the right players in place...

Just imagine the world where all the logs look the same :-)


2007-05-09 15:09:23
ann hi from city of asheville jeff.l.meadows'sr/chronology