Page History

...

• Amy: List of proposed events that should be collected from ONAP and Metadata
• Muddasar: Determine if there is a standard terminology regarding logging architecture terms.  Eg., Are the categories in the above table industry accepted?

  • **There probably a body of work we can reference that spells this out.  ACTION: Literature review for that:  No standard terms, but some popular standard formats like BSD, Syslog (IETF), Common Event Format (CEF),  by Arcsight.  OWASP, NIST and Major Cloud Vendors have guidance in user docs or SDK regarding logs and formats.  NIST SP 800-92 can be found here https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-92.pdf
    
    Application logs some time are split into Application Access and Application Operations.  Other major Category in older literature is focusing on Operating System, in Containerized deployments this can be Docker and host OS, Node logs.  We should consider listing in best practice some of these categories that do not fall within Application Container.  
    
    Do we need to specify format type?  WebAPIs, Datanbases and applications way have slightly different format requirements.

• Fabian: Initial investigation of ONAP responding to security events.

...

• Review Requirements list Amy put together
• Muddasar to provide links to NIST security logging standards: 

  https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-92.pdf

• Fabian: Initial investigation of ONAP responding to security events.
• Bob to provide Orchestration logging events
• Log Template as suggested by Chakir on Tuesday call ( Apache 2 log template as an example.  Can we review work from Logging enhancement project?

...

...