Skip to main content

A-093 - Log Data

Purpose

Record system, application and security events for monitoring and investigation.

Asset Type

Information

Description

Logs generated by systems (firewall, VPS, applications)
Includes access logs, error logs, authentication events
Currently stored locally on systems

Criticality

High

Sensitivity

Sensitive

Exposure Level

Internal

Trust Zone

Hybrid

Dependencies

All infrastructure and platform assets
Future SIEM (A-066)

Relationships

Generated by VPS, firewall, applications
Intended to be centralized for analysis

Security Position (Architecture Context)

Key component for detection and investigation
Lack of centralization reduces visibility
May contain sensitive operational or user data

Existing Protective Measures

Local log storage on systems
Basic access restrictions

Owner / Responsibility

Security Role (Sec)

Notes

No centralized logging yet
Risk of log loss or tampering in case of compromise

Purpose
Asset Type
Description
Criticality
Sensitivity
Exposure Level
Trust Zone
Dependencies
Relationships
Security Position (Architecture Context)
Existing Protective Measures
Owner / Responsibility
Notes