PCI Logging Reference

I often get asked for great references for documents that support the compliance with the PCI standards.

Recently, Dr. Anton Chuvakin completed a long (18 parts) dissertation on what it takes to conduct a complete, PCI DSS compliant log review.  It has taken me this long to read the whole thing, but I have to admit, I doubt he has missed much of anything.

A client I was working with passed along the whole set of postings and asked me my if it would be good to pass along to their logging and monitoring group as a reference and I had to say that I wholeheartedly agree.

I highly recommend that you read this set of posts to obtain an understanding of logging, why it is important and what constitutes a review.


0 Responses to “PCI Logging Reference”

  1. Leave a Comment

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s


If you are posting a comment, be patient, as the comments will not be published until they are approved.

If your organization has a PCI opportunity, is in need of assistance with a PCI issue or if you would like the PCI Guru to speak at your meeting, you can contact the PCI Guru at pciguru AT gmail DOT com.

I do allow vendors to post potential solutions in response to issues that I bring up in posts. However, the PCI Guru does not endorse any specific products, so "Caveat Emptor" - let the buyer beware. Also, if I feel that the response is too "sales-ee", I reserve the right to edit or not even authorize the response.


March 2011
« Feb   Apr »

Enter your email address to subscribe to the PCI Guru blog and receive notifications of new posts by email.

Join 1,941 other followers


%d bloggers like this: