+OPS-15 Logging and Monitoring - Accountability
---+OPS-15.01B
---+OPS-15.02B
---+OPS-15.03B
---+OPS-15.01AC
---+OPS-15.02AC
---+OPS-15 Supplementary Information - Complementary Customer Criteria

1. Übersicht

OPS-15 Logging and Monitoring - Accountability

-

Bezeichnung	Standard
OPS-15.01B	The log data generated - compromising both cloud service derived data and cloud service provider data - enables unambiguous identification of user access at the tenant level, supporting effective forensic analysis in the event of a security incident.
OPS-15.02B	Each logged event includes a time/date stamp to ensure accurate and traceable records.
OPS-15.03B	The cloud service provider is able to support forensic analysis of incidents and to retain a chain of evidence. This implies that the cloud service provider capture the state of hardware objects and network communication during security events.
OPS-15.01AC	On request of the cloud service customer, the cloud service provider provides the logs relating to the cloud service customer in an appropriate form and in a timely manner so that the cloud service customer can investigate any incidents relating to them. The additional criterion also refers to logs of system components under the responsibility of the cloud service provider, to which the cloud service customer generally has no access, insofar as these logs are relevant for the analysis of security incidents and for identifying access to cloud service customer service data (cf. IAM-07 and INQ-03). For logging of system components under the responsibility of the cloud service provider cf. PSS-04.
OPS-15.02AC	The aforementioned logs are collected and maintained using controls and processes that preserve their integrity and reliability for security monitoring and incident investigation purposes. This implies, but is not limited to: 1. Records are complete and have not been tampered with in any way; 2. Logging systems are clock synchronised, logs include accurate timestamps; 3. Copies of electronic evidence are provably identical to the originals; and 4. Any information system from which evidence has been gathered was operating correctly at the time the evidence was recorded.
OPS-15 Supplementary Information - Complementary Customer Criteria	Cloud service customers ensure with suitable controls that unique user IDs are assigned which allow a corresponding analysis in the event of an incident.

1.1 Referenzen

1.2 Identifizierte Anforderungen

1.2 Related Regulation

2. Identifizierte Anforderungen

Anforderungen
Source	Anforderung

3. Related Regulations

Regulations
Source	Regulierung

Cloud Computing Compliance Criteria Catalogue (C5:2026) -
Copyright by Bundesamt für Sicherheit in der Informationstechnik (https://www.bsi.bund.de/)

https://www.bsi.bund.de/DE/Themen/Unternehmen-und-Organisationen/Informationen-und-Empfehlungen/Empfehlungen-nach-Angriffszielen/Cloud-Computing/Kriterienkatalog-C5/C5_2025/C5_2025_node.html

Impressum