Today, we are announcing support for two new CloudTrail features.
- Support for log file encryption using Server Side Encryption - Key Management Service (KMS)
You can add an additional layer of security for the CloudTrail log files stored in your S3 bucket by encrypting them with your KMS key. CloudTrail will encrypt the log files using the KMS key you specify. - Log File Integrity Validation
You can validate the integrity of the CloudTrail log files stored in your S3 bucket and detect whether they were deleted or modified after CloudTrail delivered them to your S3 bucket. You can use the log file integrity (LFI) validation as a part of your IT security and auditing processes.
from What's New from Amazon Web Services http://ift.tt/1M5fpUv
No comments:
Post a Comment