Hi all,
I have developed a web application. I need to prepare for audit trails here.
The following operations I have to develop.
===>
Logging of Authentication Process. Success and failed attempts.
Logging Authentication details changes.
Software error and failures logged Should not be possible to retrieve confidential authentication information from these logs (including passwords) Is it possible to uniquely identify both client host and user from these logs?
Is it possible to review these logs from within application?(Include Reporting of information from logs).
What level of information is logged by the application (read/write access, modification data, copy/paste data)?
Are log files time sequential and can they positively identify the time of action?
Is there any validation of event logs and can missing/deleted entries be discovered or recovered?
How long do logs exist for?
What method of backup and recovery event logs exist.
any reference? any link?
Thanks