Log Service provides security protection features such as server-side encryption, fine-grained access control, and service logs. Log Service also provides Log Audit Service that allows you to collect and audit the logs of Alibaba Cloud services in real time across multiple accounts in an automatic and centralized manner. Log Service provides data insight capabilities and can meet your business requirements for data security and compliance.

Compliance certifications

Log Service is certified with the following standards:

  • ISO 9001, ISO 20000, ISO 27001, ISO 27017, ISO 27018, ISO 22301, ISO 27701, and ISO29151
  • BS10012
  • CSA STAR
  • MLPS level 3
  • SOC
  • C5
  • Hong Kong Standard on Auditing (HKSA)
  • Philippine Standards on Auditing (PSA)
  • MTCS
  • OSPAR
  • PCI DSS

Security capabilities

The following table describes the security features that are provided by Log Service.

Feature Description
Access control Log Service provides features that can be used together with Resource Access Management (RAM) policies and Security Token Service (STS) temporary credentials. You can use these features to manage resource access in Log Service.
Data encryption Log Service supports server-side encryption and encrypted transmission based on the SSL or TLS protocol to protect data from potential security risks on the cloud.
Data reliability The underlying storage system of Log Service uses a three-replica mechanism to ensure high reliability.
Log auditing and monitoring Log Service provides the service log feature and integrates with CloudMonitor to help you monitor and audit your service data.
Log auditing for cloud services Log Service provides Log Audit Service that allows you to collect and audit the logs of Alibaba Cloud services in real time across multiple accounts in an automatic and centralized manner.