Loading EN-304-621.md +3 −0 Original line number Diff line number Diff line Loading @@ -882,6 +882,9 @@ For medium risk: - **[REQ-LOG-4]:** The log information shall have an active backup scheduled. - **[REQ-LOG-5]:** Administrative actions like logs, traces and events shall be recorded into a write only service or endpoint. > Clarification: write only service can be append only or even idempotent upsert system that does not let the received message to be altered later. > The aim is to prevent a possible attacker to clear its traces by deleting the actions done in the system by distorting the history. For high risk: - **[REQ-LOG-6]:** The write only log or tracing storage shall be deployed outside of the system deployment context. Loading Loading
EN-304-621.md +3 −0 Original line number Diff line number Diff line Loading @@ -882,6 +882,9 @@ For medium risk: - **[REQ-LOG-4]:** The log information shall have an active backup scheduled. - **[REQ-LOG-5]:** Administrative actions like logs, traces and events shall be recorded into a write only service or endpoint. > Clarification: write only service can be append only or even idempotent upsert system that does not let the received message to be altered later. > The aim is to prevent a possible attacker to clear its traces by deleting the actions done in the system by distorting the history. For high risk: - **[REQ-LOG-6]:** The write only log or tracing storage shall be deployed outside of the system deployment context. Loading
