In response to Ben Nagy's 06/08/2002 message that asked: "I see the need for evidence quality data, but I can't see how incorporating signatures in that way would go any way towards making data more courtworthy. To cheat, I just fake the logs on my firewall, sign them (because I have the private keys on the firewall) and send them to my collector. I might be missing something profound here, but I can't think of a way to solve that problem without a trusted third party acting in some manner. Is there one?"
My response: Baltimore Technologies plc has capabilities in both its SelectAccess and UniCERT products that will cryptographically time stamp and digitally sign each audit/log record as it is generated so that fake entries could not be added later. The capability is compliant with 21CFR 11 (The Code of Federal Regulations (CFR) Title 21 - Food and Drugs. Chapter 1 is prepared by the US Food and Drug Administration. Part 11 deals with electronic records and electronic signatures. The pharmaceutical industry is implementing solutions from the PKI vendors, including Baltimore, so that they can comply with 21CFR 11.) The question is, does Baltimore have an existing agent that will execute on the firewall? If not, the organization seeking such capability may have to fund the effort for one to be coded or get the firewall vendor to work with Baltimore to provide the capability as an optional feature. Marc Mandel _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] For Account Management (unsubscribe, get/change password, etc) Please go to: http://lists.gnac.net/mailman/listinfo/firewalls
