Chapter 3:

Establishing a Sovereign Audit Trail

Compliance frameworks like DORA and GDPR require verifiable, identity-linked audit logs. To achieve this, you must decouple the audit trail from the infrastructure provider.

  • The Database Level: Use the Percona Audit Plugin (available for MySQL and MongoDB) to capture every query, connection, and administrative action directly at the engine level.
  • The Orchestration Level: If using Kubernetes, capture container lifecycle events. If using standard servers, capture OS-level access logs.
  • The SIEM Integration: Route these logs into a centralized, customer-controlled SIEM (like Splunk or Elastic) using standard, portable protocols. This ensures your auditors have a continuous record that is independent of any cloud provider.
Percona Sovereignty Resource Center
Speak to an expert