V7.1 — Log Content
Log Content: 4 L3 requirement(s). V7.1.1: Verify that the application does not log credentials or payment details. Session tokens should only be stored in logs in... V7.1.2: Verify that the application does not log other sensitive data as defined under local privacy laws or relevant security p... V7.1.3: Verify that the application logs security relevant events including successful and failed authentication events, access ... ... and 1 more.
| Property | Value |
|---|---|
| Section | V7.1 |
| Owner | platform |
Mapped Controls
| Control | Title |
|---|---|
| SID-AUDIT-01 | Structured Security Event Logging |
Source: OWASP Application Security Verification Standard 4.0.3