{[ promptMessage ]}

Bookmark it

{[ promptMessage ]}

Unit 7-1 Audit [Compatibility Mode] - Unit 7 Audit and...

Info iconThis preview shows pages 1–3. Sign up to view the full content.

View Full Document Right Arrow Icon
12/19/2010 1 Unit 7: Audit and Intrusion Detection Part 1 Click Here to Start Audio Audit Control Objectives Audit Control Objectives - TCSEC circle5 TCSEC - Required at C2 and above. circle5 “…access and evaluate accountability information by a secure means, within a reasonable amount of time, without undue difficulty.” circle5 “…provide authorized personnel with the ability to audit any action that can potentially cause access to, generation of, or effect the release of classified or sensitive information.” Audit Systems circle5 Audit Trail - A list of events that might contain records of security violations. circle5 Two Categories of Use ◦ Forensics: Detecting extent and responsibility of damage after an attack. ◦ Intrusion Detection: Detecting an ongoing attack.
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
12/19/2010 2 Anatomy of an Auditing System System - Chapter 24 Chapter 24 Logger Analyzer Notifier Sanitizer Audit Considerations 1) Is benefit of collecting information worth the impact on performance?
Background image of page 2
Image of page 3
This is the end of the preview. Sign up to access the rest of the document.

{[ snackBarMessage ]}