There is a paper on www.securityfocus.com dealing with using
information from IDS as evidence. I've not read it yet.
-- KH
> On Mon, 9 Aug 1999, Razvan Peteanu wrote:
>
> > Hi all,
> >
> > Does anyone happen to have experience with reporting to and working with
> > Canadian authorities (RCMP & the legal system) in a security-related
> > incident? I'm interested in finding out what conditions have to be met in
> > order to go in court with firewall (and IDS) logs. There is a very useful
> > paper on this ("Intrusion Detection Systems as Evidence" by Peter Sommer,
> > Computer Security Research Centre, London School of Economics & Political
> > Science, see
> > http://www.zurich.ibm.com/pub/Other/RAID/Prog_RAID98/Full_Papers/Sommer_text
> > .pdf ) but it doesn't have Canadian-specific content and laws vary. Of
> > course, any input is appreciated.
> >
> > Thank you,
> >
> > Razvan
> > -
> > [To unsubscribe, send mail to [EMAIL PROTECTED] with
> > "unsubscribe firewalls" in the body of the message.]
> >
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
