PacketSource — Security White Papers
 
A A A
 

All pages tagged with audit

An Audit of Active Directory Security, Part 5

This is the fifth and final installment in a five-part series on auditing Active Directory security. The first article in the series offered a brief introductory overview of Active Directory. ...

Document added on March 7, 2011

Introduction to the NSA Infosec Assessment Methodology (IAM)

On May 22, 1998 President Clinton signed Presidential Decision Directive 63 (PPD 63). This directive outlined the civilian and governmental responsibility of protecting the US Critical Infrastructure and established the ...

Written by: Mitchell Rowton and added on April 2, 2011

Will Your Network Pass a Security Audit?

It is a well-known fact that in the Internet-connected world network perimeter vulnerabilities do exist that allow unauthorized individuals access to networks and provide the ability to disrupt business continuance. ...

Written by: Michael Bruck and added on June 22, 2011

HIPAA Security Compliance Project – Identification of Logging and Auditing Requirements

This discussion will outline a project “plan of attack” for a covered entity to identify and address the electronic logging and auditing requirements within the Final HIPAA Security Rule.

Document added on March 23, 2011

Introduction to Netwox and Interview with Creator Laurent Constantin

In this article Duane Dunston gives a brief introduction to Netwox. Performing a security or network audit with a large number of security tools available can be quite overwhelming. Even ...

Document added on May 28, 2011

Tools, Tools, and TOOLS!!

Have you ever said to yourself, “There are just so many tools, and it’s hard to keep track of all of them and know what each one does?” Well I ...

Document added on March 25, 2011

Using Basic Security Module (BSM), Tripwire, System Logs, and Symantec's ITA for Audit Data C

The primary focus of this paper is to provide host based set of tools auditing trace records of attempted attacks on a secured network of Solaris boxes. Until recently UNIX ...

Document added on May 23, 2011

Information Security as a Process

Information security is a maturing field that doesn't have many of the processes that other areas of IT take for granted. In this article we will explore one of the ...

Written by: Mitchell Rowton and added on Jan. 25, 2011

State of Affairs of Wireless Networks

In this paper, we talk about the fundamentals of wireless network, the built-in security (or in-security) that comes with those networks, some of the tools that can be used to ...

Written by: Rakesh Arora and added on Feb. 24, 2011

Audit Vulnerability Scanning Policy

Defines the requirements and provides the authority for the information security team to conduct audits and risk assessments to ensure integrity of information/resources, to investigate incidents, to

Document added on June 29, 2011