[Improvement] Implementing a Comprehensive Audit System #3148
Labels
improvement
Improvements on everything
Comments
|
I'm glad to participate in the design and implement of this Audit System |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
What would you like to be improved?
Currently, Gravitino provides basic service logging, which captures limited operational data. However, this does not suffice for environments where tracking detailed user activities, parameters, and system interactions is crucial for security audits and compliance.
Suggested Features for Audit System
Method Invocation Tracking: Record every method call within the system along with its parameters to trace all operations performed, especially critical actions related to data handling.
User and Session Identification: Log the identity of the user performing each action along with session information to correlate activities with individual users.
Access Source Logging: Include the IP address and, if possible, the device information from which the access was made to help identify potential unauthorized access from unfamiliar locations or devices.
Timestamps: Every audit record should have a precise timestamp to ensure that the sequence of events can be reconstructed accurately.
Result Logging: Outcomes of all operations should be logged to detect any operational failures or changes in the system state that could indicate a security breach or system malfunction.
Data Integrity and Security: Ensure that the audit logs are stored in a secure, tamper-resistant manner to maintain the integrity of the audit data.
How should we improve?
No response
The text was updated successfully, but these errors were encountered: