Importance of Understanding Logs from an Information Security Standpoint

Information Security has many facets and branches, but to really understand what is going on in this new world, you need the ability to read, translate, and understand the wide variety of logs generated by the information stream. This document will discuss the importance of logs in the 21st century, and give an idea of what problems Information Security professionals face when trying to analyze them. We start from the beginning by defining what a log really is and what its purpose is. Then we talk about ways to improve your understanding of logs, how to decipher their cryptic formats, and how to manage logs effectively. Finally we wrap up with discussion on legalities of logs, and why it is so critical to effectively manage, maintain, and secure logs.

Tags:

Read the complete paper at SANS