Monitoring Logs - FAQ
- The logs are displayed in duplicate. How can I deal with it?ECL2.0, Monitoring Logs
- Can I download logs?ECL2.0, Monitoring Logs
- Is there a fee?ECL2.0, Monitoring Logs
- Which requirements of PCIDSS can be met?ECL2.0, Monitoring Logs
In case of managing own logs yourself, you can meet the following requirements of PCIDSS
(Logs of your own systems and applications are out of scope)
10.5 Secure audit trails so they cannot be altered.
10.5.1 Limit viewing of audit trails to those with a job-related need.
10.5.2 Protect audit trail files from unauthorized modifications.
10.5.3 Promptly back up audit trail files to a centralized log server or media that is difficult to alter.
10.7 Retain audit trail history for at least one year, with a minimum of three months immediately available for analysis (for example, online, archived, or restorable from backup).