Retain or restrain access logs?

Retain or restrain access logs?
Mark Rasch, 2006-06-12

A recent proposal by the U.S. Department of Justice that would mandate Internet Service Providers to retain certain records represents a dangerous trend of turning private companies into proxies for law enforcement or intelligence agencies against the interests of their clients or customers.

Expand all | Post comment

Retain or restrain access logs? 2006-06-12
Bob Radvanovsky

Retain or restrain access logs? 2006-06-13
Anonymous

Good article but even he is missing the real issue 2006-06-14
Patriot (3 replies)

Re: Good article but even he is missing the real issue 2006-06-15
mtnbkr

Re: Good article but even he is missing the real issue 2006-06-20
Mark D. Rasch

Re: Good article but even he is missing the real issue 2006-07-22
Anonymous

Retain or restrain access logs? 2006-06-29
Jimmy Weg (1 replies)

Mark, as I understand it, the legislation, which we in LE support, will require ISPs to retain IP logs. As you know, such logs can identify the account that was logged on to the server at a point in time. Legal process will be required for such logs, as you pointed out.

What's the difference between this record keeping requirement and those that the SEC places on stock brokers? None, I submit. In fact, the securities industry, which keeps all of your most private financial data, is the country's most regulated industry. The SEC can inspect your account without any legal process.

So, I would argue that much of the concerns in your article present a "sky is falling" scenario. Legal process will be required to obtain logs, and, AFAIK, nothing will require ISPs to store every web page you've visited.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/406/33751#33751

Re: Retain or restrain access logs? 2006-07-08
Anonymous

Retain or restrain access logs? 2006-06-30
Jimmy W

Retain or restrain access logs? 2006-07-17
Anonymous

Retain or restrain access logs? 2006-07-19
Carl Shannon