PCI Requirement 10.3.5 – Origination of Event
Where did an Event Begin?
When an event occurs, organizations need to know where it came from, so they can trace back to where it happened. PCI Requirement 10.3.5 requires that every log details the origination of event. By doing so, an organization can always identify where an event occurred.
Through interviews and observation, auditors will try to verify that the origination of the event is included in log entries.
Every log that’s generated needs to contain the origination of the event. This means that when an event takes place, we need to know where it came from in order to track back to where it happened.