Improved Auditing

Previous page
Table of content
Next page

To help comply with certain Common Criteria requirements, various key operations are audited. Enter the following command from an elevated command-prompt to configure key auditing in Windows Vista. 

 auditpol /set /subcategory:"other system events" /success:enable /failure:enable

Note 

The U.S. Government Protection Profile for Single-level Operating Systems in Environments Requiring Medium Robustness v1.67, §5.1, defines security audit requirements, including those related to cryptographic key use (NSA 2003).

Various keys operations, such as creation, deletion, and key access will yield events such as those shown in Figure 7-1.

image from book
Figure 7-1: Audit event created when an RSA key is accessed from CNG.

You can view these entries in the Security log of the Windows Event Viewer.


Previous page
Table of content
Next page
Writing Secure Code for Windows Vista
Writing Secure Code for Windows Vista (Best Practices (Microsoft))
ISBN: 0735623937
EAN: 2147483647
Year: 2004
Pages: 122
Authors: Michael Howard, David LeBlanc
BUY ON AMAZON
CISSP Exam Cram 2
The .NET Developers Guide to Directory Services Programming
Secure Programming Cookbook for C and C++: Recipes for Cryptography, Authentication, Input Validation & More
The Java Tutorial: A Short Course on the Basics, 4th Edition
What is Lean Six Sigma
MPLS Configuration on Cisco IOS Software
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy