Re: Secure logging

From: Jim March <jmarch_at_prodigy_dot_net>
Date: Wed Nov 10 2004 - 17:41:25 CST

Keith Copenhagen wrote:

>I'll admit to agreeing with Jim,
>
>While I don't know what is in the audit trail, or what threats we need
>to address, I'll go with a concept that includes an audit CD into a
>physically locked drive during operation.
>
>I can even imagine a CD-Only DRE That boots off a CD, has the ballot
>definition xml on that same CD, and audit logs back to that CD, talk
>about unambiguous traceability, its all there, period. The size could
>force the choice from CD-RW to DVD-RW.
>
>-Keith
>

Keith,

Another reason to start with a DVD burner drive, besides space, is that
in some fairly short period (certainly under 2 years) CD burners are
going to go the way of the Dodo as their functionality is entirely
present in DVD drives. We could rapidly face a situation where we just
can't buy CD burners anymore.

Start with DVD, we put off that point for at least 2 or 3 years, and at
no more than $30 or $40 per box in current upfront costs over CD
burners...and the price gap will drop over time, not increase. DVD
drives are no more expensive to produce today than CD drives.

Another thing: we do NOT want CD-RW or DVD-RW. We want CD-R or DVD-R.
The latter are write-once-read-many (WORM). RW drives can be erased -
bad mojo for audit logs. And if we get to the point of talking to the
public about this, the difference WILL be noted by the techie community.

Jim
==================================================================
= The content of this message, with the exception of any external
= quotations under fair use, are released to the Public Domain
==================================================================
Received on Tue Nov 30 23:17:25 2004

This archive was generated by hypermail 2.1.8 : Tue Nov 30 2004 - 23:17:44 CST