Ensure CloudTrail log file validation is enabled - Complete Cloud Security in Minutes - Orca Security

Logging and monitoring

Ensure CloudTrail log file validation is enabled

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

AWS CIS
AWS Foundational Security Best Practices Controls
CCPA
CSA CCM
FedRAMP
GDPR
HIPAA
HITRUST
ISO/IEC 27001
NIST 800-53
NIST-CSF
Orca Best Practices
SOC 2

Description

CloudTrail log file validation creates a digitally signed digest file containing a hash of each log that CloudTrail writes to S3. These digest files can be used to determine whether a log file was changed, deleted, or unchanged after CloudTrail delivered the log. It is recommended that file validation be enabled on all CloudTrails.

Recommended Mitigation

Turn on log file verification for {AwsCloudTrail}

See Orca in action

See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.