Cloud Audit Logs

Definition

Cloud Audit Logs are a critical component of cloud security, providing a detailed record of activities and access events within cloud environments. These logs capture information about who accessed what resources, when, and from where, enabling organizations to monitor for unauthorized access, detect anomalies, and ensure compliance with regulatory requirements. By maintaining comprehensive audit logs, organizations can perform forensic analysis and maintain accountability for actions taken within their cloud infrastructure.

Secure Settings Example

audit_log_config:
  enabled: true
  log_type: "ADMIN_READ"
  log_type: "DATA_WRITE"
  log_type: "DATA_READ"
  retention_period_days: 365
  storage_location: "gs://secure-audit-logs-bucket"
  access_control:
    - role: "roles/logging.viewer"
      members:
        - "group:security-team@example.com"

Insecure Settings Example

audit_log_config:
  enabled: false
  log_type: "DATA_WRITE"
  retention_period_days: 7
  storage_location: "gs://public-audit-logs-bucket"
  access_control:
    - role: "roles/logging.viewer"
      members:
        - "allUsers"