How does Windows Audit meet Common Criteria compliance standards?

Actually most of our auditing work in Windows has historically been done in order to meet ITSec C2, and later Common Criteria EAL4 requirements. I just stumbled on this document, which describes the requirements and what we audit to meet the requirements. Of course, starting in Windows Server 2003, I added the additional goal to…

1

What is up with Audit Collection Services?

A lot of you have been asking me to write about Audit Collection Services (ACS, which some of you might know as MACS). For those of you unfamiliar with ACS, it’s a client-server application to collect, normalize and store large volumes of security event log data from large numbers of machines, and to make the…

1