μ α
ۼ 2009-02-06
ȸ : 12,708
Log management as a tool against insider threats
ö̾ α ǰ Ʈũ ȣϵ ϴ
By Davi OttenHeimer, Network World May 28, 2008
------------------------------------------------------------------------------------------------------------------------------------------------------------
IT ڷμ, ϰ Ǵµ ʿ- Ư ö̾ ַ ִٸ- κ ַ ϴ ϰ Ѵ.
̿ Ѱ ö̾ α ǰ κ Ʈũ ȣ Ȱ ִ ̴. α ǰ ҿ ִٸ, ΰ ȣϴµ װ ϱ? ٸ Best practice ִٸ ̰, ʴ ϱ?
ȣ Ž - ̷ ΰ īװ . ̸ Ÿ, ڴ ̺Ʈ ϰ ߰ϴ ϴ ݸ, ڴ ϵ ´.
α Ž , ü ΰ ȣϴ δ Ѵ. ΰ ٰ ͵ ʿ Ѵ.
, Ž ȭ۵ ֳϸ, ӹ (, ǽɽ Ȱ ) ϰ ݵ ݿ ϱ ̴. α ö̾ Ӹ ƴ϶ ݿ ִ • ø̼ ִ.
α 밳 ϰ ߾ȭ α (PCI 䱸 10.5) ϱ α ɷ ִ ߾ȭǰ ϴ Ͱ õȴ. Ǵ Ȱ õ Ͱ ִ. ̴ ѿ ȣȭ ͵ α κ ǹѴ.
, Ἲ (PCI 䱸 10.2.2,10.5.5 11.5) α 鿣(back-end) ִ. Ϻδ ȣȭ ǻ α Ҹ ִٴ ǿ ְ, Ű õ ϴ Ǹ ȣȭ ʼ̴. , Ű Ǵ üϴ ڰ ִٰ غ. İ ߿ ; ð ȯ key( rotation ִ Ͼ ǹ) Ǵ ǽɽ Ȱ Ÿ.
ö̾ ϱ α ַ ȹϰ ϴ ־ best practice õ ǻ :
1) ʹ Ư daily summary report ϵ ϸ鼭 ȭǾ Ѵ. ̴ ÿ ִ (granular) ؿ ͵ ɷ սǾ ߾ȭ ϵ Ѵ. ȭ Ⱓ ī̺ 並 Ͽ Ǿ Ѵ.
2) Ư ̺Ʈ ڿ ǽð ˷ Ѵ. ö̾ ħء, ǽɽ Ȱ ȣ پ ִ, װ͵ ΰ ͷ ΰ ϰ ȭ ʿ伺 Ѵ. Ư ̺Ʈ Ͻ Ϳ ٸ , ؾ Ϲ ͵ ȭ̴. ̰͵ (fraud) ŷ ȴ.
3) α Ͻ ǻ Ϻη . ΰ Ͱ Ǹ, ξ ȣ , α ⼺ ȭȴ. Ͻ ϴµ ȿ̰ ٹ ִ°? پ ýκ α ϴ α Ǵ ý۵ ϴ ͺ ҿɱ?
α ַ ö̾ ϰ κ Ʈũ ȣϵ ϸ鼭..ݵ ϰ Žϴ ȯ ȭų ִ.