...
CON-LOG-REQ-19
...
The container MUST be capable of automatically synchronizing the system clock daily with the Operator’s trusted time source, to assure accurate time reporting in log files. It is recommended that Coordinated Universal Time (UTC) be used where possible to eliminate ambiguity owing to daylight savings time.
Sync time source The container MUST be capable of automatically synchronizing the system clock daily with the Operator’s trusted time source, to assure accurate time reporting in log files. It is recommended that Coordinated Universal Time (UTC) be used where possible to eliminate ambiguity owing to daylight savings time.
...
CON-LOG-REQ-F4
CON-LOG-REQ-F10
...
The container SHOULD provide the capability of maintaining the integrity of its static files using a cryptographic method.
(Fabian) Propose to remove because this is a hardening requirement, not a logging requirement
(Bob) Instead of removing this is now in the Best Practices category and we can make it a recommendation.
...
CON-LOG-REQ-12
CON-LOG-REQ-XX
...
The container and container application MUST NOT include an authentication credential, e.g., password, in the security audit logs, even if encrypted.
The container and container application MUST NOT include a sensitive information in the log
...