Log Collection

Collection

• There currently is a SECCOM proposal that specifies what type of data should be logged where it should be logged to.  
  • REQ-374 - Getting issue details... STATUS
  • REQ-441 - Getting issue details... STATUS
• How these logs would be collected and aggregated is specified by the ONAP NextGen Presentation by Byung.
  • ONAP Next Generation Security & Logging Architecture#ONAPLogging  
  • old presentation slide deck (see the above link for the latest on) https://wiki.onap.org/download/attachments/103416997/ONAP-Next-Generation-Security-Logging-2021-5-25-v1.pptx?version=1&modificationDate=1621953519000&api=v2
  • FILEBEAT CONTAINERS ALREADY being used in ONAP
    • Filebeat sidecar container setup and configuration in OOM
    • https://logs.onap.org/onap-integration/daily/onap_daily_pod4_master/2021-11/12_03-22/infrastructure-healthcheck/k8s/kubernetes-status/versions.html

Proposed Collection of Container Logs

[CON-LOG-REQ-13] The container MUST have security logging for the container and container application active from initialization. [Reference: R-84160]

[CON-LOG-REQ-20] The container and container application MUST use the STDOUT for security logs collection [Reference: REQ-441]