https://wiki.idesg.org/index.php?action=history&feed=atom&title=Secure_Req_14Secure Req 14 - Revision history2026-04-16T10:20:49ZRevision history for this page on the wikiMediaWiki 1.38.4https://wiki.idesg.org/index.php?title=Secure_Req_14&diff=6592&oldid=prevOmaerz: 8 revisions imported: Initial Upload of old pages from IDESG Wiki2018-06-28T04:03:34Z<p>8 revisions imported: Initial Upload of old pages from IDESG Wiki</p>
<p><b>New page</b></p><div>''<< Back to [[Baseline_Functional_Requirements_v1.0|Baseline Functional Requirements Index]]''<br />
<br />
== SECURE-14. SECURITY LOGS ==<br />
Entities conducting [[IDEF Glossary DIGITAL IDENTITY MANAGEMENT FUNCTIONS|digital identity management functions]] MUST log their transactions and security events, in a manner that supports system audits and, where necessary, security investigations and regulatory requirements. Timestamp synchronization and detail of logs MUST be appropriate to the level of risk associated with the environment and transactions.<br />
<br />
=== SUPPLEMENTAL GUIDANCE ===<br />
Transactions and events associated with systems that support identity management functions must<br />
be time-stamped and logged. Where necessary additional information related to the events also must<br />
be logged (such as the source of an authentication assertion) with the data needed to support audits.<br />
<br />
Selection of logging and timestamping standards, processes, and procedures should be consistent<br />
with the processes outlined in [[Secure Req 1|SECURE-1 (SECURITY PRACTICES)]].<br />
<br />
Audit records and logs must be protected consistent with [[Secure Req 2|SECURE-2 (DATA INTEGRITY)]].<br />
<br />
=== REFERENCES ===<br />
As an example: HIPAA Security Regulations regarding development and maintenance of logging<br />
procedures and records: 45 CFR Part 164, § 164.308(a)(1)(ii)(D), § 164.408(c):<br />
http://www.ecfr.gov/cgi-bin/text-idx?node=pt45.1.164&rgn=div5<br />
<br />
=== APPLIES TO ACTIVITIES ===<br />
[[IDEF Functional Model REGISTRATION|REGISTRATION]], <br />
[[IDEF Functional Model CREDENTIALING|CREDENTIALING]], <br />
[[IDEF Functional Model AUTHENTICATION|AUTHENTICATION]], <br />
[[IDEF Functional Model AUTHORIZATION|AUTHORIZATION]], <br />
[[IDEF Functional Model INTERMEDIATION|INTERMEDIATION]]<br />
<br />
=== KEYWORDS ===<br />
[[IDEF Keywords AUDIT|AUDIT]], [[IDEF Keywords LOGS|LOGS]], [[IDEF Keywords PROCESS|PROCESS]], [[IDEF Keywords SECURITY|SECURITY]]<br />
----<br />
----<br />
Quick Links: [[SALS]] | [[Baseline Functional Requirements v1.0]] | [[Glossary]] |<br />
<br />
----<br />
----</div>Omaerz