Modernizing Logging Requirements for Agencies
The 2021 White House memorandum, which established baseline logging standards, needs an update to keep pace with modern cyber threats.
In August 2021, the White House released memorandum M-21-31, establishing a framework for capturing, retaining, and managing data for federal agencies.
M-21-31’s intention is to improve visibility and empower federal agencies to detect and respond to security incidents more effectively
However, its methods are increasingly outdated, and to keep pace with modern cyber threats, M-21-31 must evolve to mandate continuous logging.
- A revised memorandum should encourage the adoption of open standards collection.
- Open data-storage protocols should be adopted to ensure the government retains ownership of the logs.
Author's summary: Update logging requirements to counter modern cyber threats.