https://elastisys.com/pci-dss-compliance-in-kubernetes-based-platforms/ Go beyond the clouds Mon, 14 Oct 2024 15:01:39 +0000 hourly 1 https://wordpress.org/?v=6.7.1 https://elastisys.com/pci-dss-compliance-in-kubernetes-based-platforms/#comment-542 Tue, 03 Nov 2020 07:32:52 +0000 https://elastisys.com/?p=6967#comment-542 […] All AWS services can push logs to CloudTrail, including audit logs. Applications can be made to push logs into it as well. In Compliant Kubernetes, we use Open Distro for Elasticsearch to store both application and audit logs. This way, all application and audit logs are available practically immediately, not just every minute or five minutes, as with CloudTrail. In both cases, storage can be made tamper-proof to adhere to requirements from e.g. PCI DSS. […]

]]> https://elastisys.com/pci-dss-compliance-in-kubernetes-based-platforms/#comment-538 Thu, 29 Oct 2020 11:31:21 +0000 https://elastisys.com/?p=6967#comment-538 […] in place at the organization and compile a report with the results. So unlike the PCI DSS, which we have written about before, it is not as easy to provide a clear cut mapping between requirements and supporting […]

]]> https://elastisys.com/pci-dss-compliance-in-kubernetes-based-platforms/#comment-533 Wed, 14 Oct 2020 05:49:24 +0000 https://elastisys.com/?p=6967#comment-533 […] All AWS services can push logs to CloudTrail, including audit logs. Applications can be made to push logs into it as well. In Compliant Kubernetes, we use Open Distro for Elasticsearch to store both application and audit logs. This way, all application and audit logs are available practically immediately, not just every minute or five minutes, as with CloudTrail. In both cases, storage can be made tamper-proof to adhere to requirements from e.g. PCI DSS. […]

]]>