OSS Bucket without Access Logging

Logging and monitoring

OSS Bucket without Access Logging

Platform(s)

Compliance Frameworks

AliCloud CIS
Brazilian General Data Protection (LGPD)
cis_8
Data Security Posture Management (DSPM) Best Practices
essential_8_au
essential_8_au_level_2
hdh
iso_27001_2022
iso_27002_2022
Mitre ATT&CK
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
pipeda
UK Cyber Essentials

Description

Alibaba Cloud OSS (Object Storage Service) provides storage service to your files and data in the account. The files are stored in containers called buckets. It was detected that the OSS bucket {AliCloudOssBucket} does not have logging enabled. Logging generates a log that contains access records for each request made to your OSS bucket. By enabling OSS bucket logging on target OSS buckets, it is possible to capture all events which may affect objects within a target bucket.

OSS Bucket without Access Logging

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS