Google Cloud Professional Cloud Architect — Question 36

One of your primary business objectives is being able to trust the data stored in your application. You want to log all changes to the application data.
How can you design your logging system to verify authenticity of your logs?

Answer options

• A. Write the log concurrently in the cloud and on premises
• B. Use a SQL database and limit who can modify the log table
• C. Digitally sign each timestamp and log entry and store the signature
• D. Create a JSON dump of each log entry and store it in Google Cloud Storage

Correct answer: C

Explanation

The correct answer is C, as digitally signing each log entry ensures that any alterations to the logs can be detected, thus verifying their authenticity. Option A does not provide a mechanism for authenticity, while B only limits access without ensuring log integrity. Option D focuses on storing logs but does not address the authenticity of the entries themselves.