REQ-FUN-071

Audit log append-only at DB level (no UPDATE or DELETE granted to app role)

ID
REQ-FUN-071
Category
Functional Requirements
Status
approved
Priority
P0
Created
2026-05-10T18:00:42.177Z
Approved
2026-05-10T18:02:55.163Z
Updated
2026-05-10T18:02:55.163Z

What

The audit log SHALL be append-only at the DB level (no UPDATE or DELETE granted to app role).

Acceptance

Permissions test confirms denial.

Source

OBJ-6.

established project management guidelines Mapping

Primary Knowledge Area
Integration Management
Secondary KA
Quality Management
Primary Process Group
Monitoring & Controlling
established project management guidelines Deliverable
Audit Log

DB-level append-only is the tamper-resistance property of the audit log.