Sensitive data (e.g., PII, secrets, authentication tokens) is ingested into logs without proper anonymization, masking, or redaction at source or during ingestion. This creates a significant data exposure risk, particularly for data not intended for broad log access.
Management / Logging / Threats / DEV
Inadequate Log Anonymization/Masking
CCC.Logging.TH04
Related Capabilities
| ID | Title | Description |
|---|---|---|
| CCC.Logging.CP06 | Log Filtering & Transformation | Ability to to filter, normalise, and transform raw log data at ingestion to optimise storage and enhance usability. |
| CCC.Logging.CP08 | Retention Policies | Ability to define and enforce granular retention periods for different log types based on regulatory requirements and internal policies. |
Related Controls
| ID | Title | Description |
|---|---|---|
| CCC.Logging.CN04 | Restrict Field And Log Type Access | Configure access to logs to follow the principle of least privilege in particular where technically possible limit the log fields users have access to to prevent accidental exposure to sensitive information such as PII. |