Home»
Resources

Resources Overview

Latest Resources

The SANS 2008 Log Management Market Report

The survey by the SANS Institute shows that companies now want more data collection, correlation and analysis, but they work under ongoing limitations in these areas. As in past years, the lack of common format between log systems among (commercial and custom applications) is still causing problems with collecting, sorting and parsing of log data. This lack of interoperability is denying organizations access to data that they now know is in their logs — data that they can't access under existing conditions.

Best Practices in Starting PCI Compliance Initiatives

PCI is an attempt to improve the security of cardholder information throughout the processing lifecycle. The standard was spun out from the individual card brands (such as Visa and MasterCard) and is controlled by the PCI Security Standards Council. The standard lays out 12 specific requirements for compliance, with granularity down to specific functions companies must perform. Despite all the emphasis placed on compliance, PCI is a means to an end. The focus should be on developing and maintaining the means to protect customer information. Log management plays a key role in this process.