Audit log

Definition

An audit log (also called an audit trail) is a chronologically ordered record of security- and compliance-relevant events in a system. It typically captures timestamp, actor, action, affected resource, and outcome. Audit logs are a prerequisite for traceability, forensic analysis, and evidence toward auditors (for example under ISO 27001 or SOC 2). In regulated industries, a defined retention period is standard practice.

How Swiss Knowledge Hub uses this term

Swiss Knowledge Hub maintains a chronological per-tenant audit log (the ActivityLog table) covering security- and configuration-relevant events. Integrity is enforced at the database access layer; cryptographic signing or a hash chain is not part of the standard product.

Related terms

• Compliance frameworks (ISO 27001, SOC 2)
• Zero trust
• Workspace / tenant

Sources

1. ISO/IEC 27001:2022 — Informationssicherheits-Managementsysteme — https://www.iso.org/standard/27001
2. Wikipedia: Audit trail — https://en.wikipedia.org/wiki/Audit_trail