Any data being exported from Crossfeed must be logged. This issue is specific to Generate Report function logging.
UserID
User Name
User Role
SessionID or IP Address
Time submitted
Report parameters (logic) submitted
Time execution started
Time execution ended
Elapsed execution time
Completion Code (successful/failed)
Number of Records queried
Number of Records matched/written to report
12/29/2023 at 11:00:58 PM (GMT-0800) | finished | report | Report generation finished.(TITLE:ABCDE12345, ID:123456789, FORMAT:CSV, Report Size:1.48 MB, Report Duration:52 seconds, Hosts matching filters:2437) | Data Consumer | data.consumer@xxx.gov | Standard User
12/29/2023 at 12:00:08 AM (GMT-0700) | error | report | Scheduled Report with [ID:1671582 Title:ZYXWVUT09876, Owner:data.consumer@xxx.gov Role:Standard User] skipped as zero targets resolved to request. | Data Consumer | data.consumer@xxx.gov | Standard User
Motivation and context
The Crossfeed concept involves collecting data from various tools such as commercial, open-source products, publicly available resources, and API data feeds. Crossfeed is an evolution of how CISA enables scalable, shared situational awareness of partner attack surfaces by providing a more comprehensive picture of an organization’s internet-accessible exposures and a snapshot of their assets from an external attacker’s perspective. Crossfeed empowers organizations to make better-informed, risk management decisions while providing CISA with greater insight on vulnerabilities in public-facing assets supporting national critical functions, a key enabler to CISA’s mission to understand, manage, and reduce risk to our cyber and physical infrastructure.
Implementation notes
Please provide details for implementation, such as:
an example for how this would be used
what this would look like
how this would act
any related work, including links to related issues
đź’ˇ Summary
Any data being exported from Crossfeed must be logged. This issue is specific to Generate Report function logging.
12/29/2023 at 11:00:58 PM (GMT-0800) | finished | report | Report generation finished.(TITLE:ABCDE12345, ID:123456789, FORMAT:CSV, Report Size:1.48 MB, Report Duration:52 seconds, Hosts matching filters:2437) | Data Consumer | data.consumer@xxx.gov | Standard User
12/29/2023 at 12:00:08 AM (GMT-0700) | error | report | Scheduled Report with [ID:1671582 Title:ZYXWVUT09876, Owner:data.consumer@xxx.gov Role:Standard User] skipped as zero targets resolved to request. | Data Consumer | data.consumer@xxx.gov | Standard User
Motivation and context
The Crossfeed concept involves collecting data from various tools such as commercial, open-source products, publicly available resources, and API data feeds. Crossfeed is an evolution of how CISA enables scalable, shared situational awareness of partner attack surfaces by providing a more comprehensive picture of an organization’s internet-accessible exposures and a snapshot of their assets from an external attacker’s perspective. Crossfeed empowers organizations to make better-informed, risk management decisions while providing CISA with greater insight on vulnerabilities in public-facing assets supporting national critical functions, a key enabler to CISA’s mission to understand, manage, and reduce risk to our cyber and physical infrastructure.
Implementation notes
Please provide details for implementation, such as:
Acceptance criteria
How do we know when this work is done?