Skip to main content

💼 10.5 Secure audit trails so they cannot be altered.

Contextual name: 💼 10.5 Secure audit trails so they cannot be altered.
ID: /frameworks/pci-dss-v3.2.1/10/05
Located in: 💼 10 Track and monitor all access to network resources and cardholder data

Description

Empty...

Similar

Internal
- ID: dec-c-e7bb3f0d

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags
💼 10.5.1 Limit viewing of audit trails to those with a job-related need.
💼 10.5.2 Protect audit trail files from unauthorized modifications.		1	4
💼 10.5.3 Promptly back up audit trail files to a centralized log server or media that is difficult to alter.
💼 10.5.4 Write logs for external-facing technologies onto a secure, centralized, internal log server or media device.
💼 10.5.5 Use file-integrity monitoring or change-detection software on logs to ensure that existing log data cannot be changed without generating alerts.		1	2

Policies (2)

Policy	Logic Count	Flags
📝 AWS CloudTrail Log File Validation is not enabled 🟢	1	🟢 x6
📝 Google Logging Log Sink exports logs to a Storage Bucket without Bucket Lock 🟢	1	🟢 x6

Internal Rules

Rule	Policies	Flags
✉️ dec-x-b1e1a494	1

Description
Similar
Sub Sections
Policies (2)
Internal Rules