Large spikes or sustained delays in log ingestion may degrade the timeliness and completeness of security telemetry. This can increase the time required to detect and investigate threats, potentially impacting incident response effectiveness.
Management / Auditlog / Threats / DEV
Log Ingestion Latency
CCC.AUDITLOG.TH02
Related Capabilities
| ID | Title | Description |
|---|---|---|
| CCC.Core.CP03 | Access Log Publication | The service automatically publishes structured, verbose records of activities performed within the scope of the service by external actors. |
| CCC.Core.CP10 | Log Publication | The service automatically publishes structured, verbose records of activities, operations, or events that occur within the service. |
External Mappings
| Framework | ID | Remarks |
|---|---|---|
| MITRE-ATT&CK | TA0005 | |
| OWASPTOP10 | A09:2021 | |
| CWE | CWE-778 | |
| CWE | CWE-223 |