Search Guard Compliance: Technical Preview 1

Search Guard
1

Hi all,

Today is the day! We are super happy to present the first technical preview of our upcoming Search Guard compliance features for Elasticsearch 6.1.1.

This set of features is geared especially towards helping you staying compliant with regulations like GDPR, HIPAA, PCI DSS, SOX or ISO. The first preview contains two additions to the audit logging module:

  • Read history audit logging: Keep an audit trail about who has accessed sensitive documents and fields, and when they have been accessed
  • Write history audit logging: Keep an audit trail about changes in sensitive indices and documents, including what was changed, who made the changes, and when

If you keep PII or otherwise sensitive data in Elasticsearch, you can now precisely monitor when they have been accessed, which fields a particular user has seen, which user changed what fields, and when a document has been created. Plus, more importantly, when it has been deleted. These features are especially useful for GDPR where you need to present this kind of information to your customers or users upon request.

The next set of features will revolve around monitoring the integrity and settings of your Elasticsearch and Search Guard installation.

Download the Technical Preview 1 for Elasticsearch 6.1.1

To build and deliver the best security plugin for Elasticsearch, we need your help and feedback:

As always, thanks a ton for your support and input!

Jochen and the Search Guard team

···

Search Guard (®) is an Elasticsearch plugin that offers encryption, authentication, and authorization.

Coded with love in Berlin, Denmark, Sweden and the US.

Search Guard is a trademark of floragunn GmbH, registered in the U.S. and in other countries.

Elasticsearch, Kibana, Logstash, and Beats are trademarks of Elasticsearch BV, registered in the U.S. and in other countries.

2

Hi Jochen,

That’s really a good news where searchguard is keeping an eye about GDPR compliance. Will this plugin is available only for 6.x + version or later will be released to 5.x too.

Best,

Yash

3

Hi Jochen,

This is greatly timed with our effort to get our startup infrastructure very HIPPA compliant!

I am getting closee. ES/SG on backend got ssl and now getting Kibana/pluging and LS on front-end going ,all on 6.1.x

Thanks for staying on cutting edge before I retire soon! :wink: Great stuff!

-Ben

···

On Wednesday, January 24, 2018 at 10:47:05 AM UTC-8, Jochen Kressin wrote:

Hi all,

Today is the day! We are super happy to present the first technical preview of our upcoming Search Guard compliance features for Elasticsearch 6.1.1.

This set of features is geared especially towards helping you staying compliant with regulations like GDPR, HIPAA, PCI DSS, SOX or ISO. The first preview contains two additions to the audit logging module:

  • Read history audit logging: Keep an audit trail about who has accessed sensitive documents and fields, and when they have been accessed
  • Write history audit logging: Keep an audit trail about changes in sensitive indices and documents, including what was changed, who made the changes, and when

If you keep PII or otherwise sensitive data in Elasticsearch, you can now precisely monitor when they have been accessed, which fields a particular user has seen, which user changed what fields, and when a document has been created. Plus, more importantly, when it has been deleted. These features are especially useful for GDPR where you need to present this kind of information to your customers or users upon request.

The next set of features will revolve around monitoring the integrity and settings of your Elasticsearch and Search Guard installation.

Download the Technical Preview 1 for Elasticsearch 6.1.1

To build and deliver the best security plugin for Elasticsearch, we need your help and feedback:

As always, thanks a ton for your support and input!

Jochen and the Search Guard team

Search Guard (®) is an Elasticsearch plugin that offers encryption, authentication, and authorization.

Coded with love in Berlin, Denmark, Sweden and the US.

Search Guard is a trademark of floragunn GmbH, registered in the U.S. and in other countries.

Elasticsearch, Kibana, Logstash, and Beats are trademarks of Elasticsearch BV, registered in the U.S. and in other countries.