kmaas category

This category of logs contains all the business requests concerning key management as a service (KMaaS).

Encrypt and decrypt actions

The encrypt action means that an encrypt request has been made. This is the case whenever data is encrypted using the KMaaS service.
The decrypt action means that a decrypt request has been made. This is the case every time data is decrypted using the KMaaS service.

These actions generate an "info" severity log in the event of success, or a "crit" severity log in the event of an error.

The log fields for these actions are as follows:

Field	Description	Type	Mandatory/Optional
tenant_id	Tenant identifier. Example: 025f02fe-bee2-444b-bf76-b5ead30327c0	String in uuid v4 format	Mandatory
kek_id	Identifier of the KEK used. Example: ed7e4c13-6199-30a3-7bce-1c82a9e31e21	String	Mandatory

Field

Description

Type

Mandatory/Optional

tenant_id

Tenant identifier.

Example: 025f02fe-bee2-444b-bf76-b5ead30327c0

String in uuid v4 format

Mandatory

kek_id

Identifier of the KEK used.

Example: ed7e4c13-6199-30a3-7bce-1c82a9e31e21

String

Mandatory