Submission + - Designing a PCI-Compliant Log Monitoring System (net-security.org)
An anonymous reader writes: Log monitoring activities are an integral part of Requirement 10 of the PCI Data Security Standard and it can be difficult to understand how the different logging portions of Requirement 10 interrelate. Despite this fact, some organizations are seeking to redesign their PCI logging environment in order to best accommodate the PCI requirements. This article examines a few key design points for architecting a log monitoring and management system that would be compliant with PCI Requirement 10.