@@ -885,7 +885,7 @@ The following requirements apply where the corresponding function exists:
For medium risk:
-**[REQ-LOG-4]:** The log information shall have an active backup scheduled.
-**[REQ-LOG-5]:** Administrative actions like logs, traces and events shall be recorded into a write only service or endpoint.
-**[REQ-LOG-5]:** Administrative log records, traces and events shall be forwarded to or stored in a service that prevents unauthorized modification or deletion of recorded entries.
> Clarification: write only service can be append only or even idempotent upsert system that does not let the received message to be altered later.
> The aim is to prevent a possible attacker to clear its traces by deleting the actions done in the system by distorting the history.
