Replies: 3 comments 4 replies
-
As far as schema's concerned, OCSF is a new one that a load of security companies are working together on - https://github.com/ocsf/ocsf-schema |
Beta Was this translation helpful? Give feedback.
-
A question is if we want these events to end up globally stored, or if we want them to end up "per server". I think per server makes more sense for this? Like a remote way to pull logs? |
Beta Was this translation helpful? Give feedback.
-
Hi! I wonder if it could be an eventsource of patches in JSON Patch format? I believe it combines well with KV nature of storage. TIA |
Beta Was this translation helpful? Give feedback.
-
There's a need for an internal method of handling audit events for various uses:
My initial take is a few things need to be worked out:
Beta Was this translation helpful? Give feedback.
All reactions