Life Sciences

Navigating GDPR Compliance on AWS

Issue link:

Contents of this Issue


Page 20 of 31

Amazon Web Services Navigating GDPR Compliance on AWS 16 Log Formats When you enable logging, you can get detailed access logs for the requests that are made to your Amazon S3 bucket. An access log record contains details about the request, such as the request type, the resources specified in the request, and the time and date the request was processed. For more information about the contents of a log message, see Amazon S3 Server Access Log Format in the Amazon Simple Storage Service Developer Guide. Server access logs are useful for many applications because they give bucket owners insight into the nature of requests made by clients that are not under their control. By default, Amazon S3 does not collect service access logs, but when you enable logging, Amazon S3 delivers access logs to your bucket on an hourly basis. This information includes: • Granular logging of access to Amazon S3 objects • Detailed information about flows in the network through VPC-Flow Logs • Rule-based configuration verification and actions with AWS Config Rules • Filtering and monitoring of HTTP access to applications with WAF functions in CloudFront Logs are also a useful source of information for threat detection. Amazon GuardDuty analyzes logs from AWS CloudTrail, VPC Flow Logs, and AWS DNS, which enables you to continuously monitor your AWS accounts and workloads. This service uses machine learning, threat intelligence, and anomaly detection to deliver detailed and actionable alerts any time a malicious activity or an unauthorized behavior is recorded.

Articles in this issue

Links on this page

view archives of Life Sciences - Navigating GDPR Compliance on AWS