Skip to main content

Record exact occurrence time of events

Requirement#

The system must log the exact occurrence time (date, hour, seconds, milliseconds and time zone) for each exceptional and security event.

Description#

Event logs must contain the exact time of occurrence in order to allow backtracking in an investigation.

Implementation#

  1. Once all the events to be logged are defined, the system must be configured so that these logs contain the date, hour, seconds, milliseconds and time zone of the event occurrence.

Attacks#

In a security incident scenario, event time and duration cannot be clearly identified due to the lack of detail in log records.

Attributes#

  • Layer: Application layer

  • Asset: Logs

  • Scope: Responsibility

  • Phase: Operation

  • Type of control: Procedure

References#