Educause Security Discussion mailing list archives
Re: what host-based data is collected?
From: William “Bill” Clark <wclark () WEBER EDU>
Date: Mon, 23 Apr 2018 02:21:06 -0600
All incoming and outgoing IP traffic for 3 months, RAT, recon, attack, and takeover records (security), All students records (duh) eternity leaving through unearthed channels on the network along with a sprinkle of SS number and student, faculty/staff financial records (traps) 1GB circular. Security events, SNM, MIP traps, etc. 250 Gig total.
On Apr 17, 2018, at 1:24 PM, Bridges, Robert A. <bridgesra () ORNL GOV> wrote: Hi, I am a researcher at Oak Ridge National Laboratory and am performing research on security operations funded by IARPA. The goal is to survey security operators to inform what cyber research to pursue. <> What host-based data does your security operation collect? How large is it? And for how long do you store it? Thank you, -- Robert A. Bridges, PhD, Research Mathematician, Cyber & Information Science Research Group, Oak Ridge National Laboratory
William “Bill” Clark wclark () weber edu WSU CISO
Current thread:
- Re: what host-based data is collected? Bridges, Robert A. (Apr 17)
- Re: what host-based data is collected? William “Bill” Clark (Apr 23)
- Re: what host-based data is collected? Valdis Kletnieks (Apr 23)
- Re: what host-based data is collected? Bridges, Robert A. (Apr 24)
- Re: what host-based data is collected? William “Bill” Clark (Apr 23)