Register
Which method would be the BEST to protect security information and event management (SIEM) log data at rest from tampering by authorized users?A. Access control lists (ACLs) on log data drivesB. Deployment
145k views
5 votes
Which method would be the BEST to protect security information and event management (SIEM) log data at rest from tampering by authorized users?A. Access control lists (ACLs) on log data drivesB. Deployment of write once read many (WORM) drivesC. Disk encryption using hardware security modules (HSM) on log data drivesD. Implementing the principle of least privilege on log data drives

User ANTARA
by
6.4k points

1 Answer

7 votes

Answer:

Option B (Deployment of write once read many (WORM) drives) is the appropriate one.

Step-by-step explanation:

  • SIEM application goods/services consolidate safety information management (SIM) with security event management (SEM) throughout the area of device protection. We include an overview including its known vulnerabilities created by users and network equipment in actual environments.
  • No quantity of administrative intervention will alter the substance on something like a WORM disc, even by physical disc disruption or failure. That would be the better-suggested choice.
User Dmitry Malys
by
6.9k points
Ask a Question
Welcome to QAmmunity.org, where you can ask questions and receive answers from other members of our community.

6.6m questions

8.7m answers

Other Questions

10 points Wireframing and storyboarding are helpful in which step of web development? Advertising Planning Printing Publishing
What is Blender's default save directory for movie AVI files?
If a website ends with .gov does it mean that its written by the government or?
How do I turn on your asus chromebook flip?
Harrison worked on a spreadsheet to show market trends of various mobile devices. The size of the file has increased because Harrison used a lot of graphs and charts. Which file extension should he use
Link Copied!