This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Cornucopia - Ecommerce Website - C 7
From OWASP
Suit: Cornucopia
Card/Value: 7
Description:
Mwengu's actions cannot be investigated because there is not an adequate accurately time-stamped record of security events, or there is not a full audit trail, or these can be altered or deleted by Mwengu, or there is no centralized logging service.
Technical Note:
Consider all application logging best practices.
References:
| OWASP SCP | OWASP ASVS | OWASP AppSensor | CAPEC | SAFECODE |
|---|---|---|---|---|
| 113 | 2.12 | - | 93 | 4 |
| 114 | 5.7 | |||
| 115 | 8.3 | |||
| 117 | 8.5 | |||
| 118 | 8.6 | |||
| 121 | 8.8 | |||
| 122 | 8.9 | |||
| 123 | 8.15 | |||
| 124 | 10.4 | |||
| 125 | ||||
| 126 | ||||
| 127 | ||||
| 128 | ||||
| 129 | ||||
| 130 |
