With our solution, you have direct control over what data is reported to New Relic. To ensure data privacy, and to limit the types of information New Relic receives, no customer data is captured except what you supply in API calls or log forwarder configuration. All data for the logs service is then reported to New Relic over HTTPS.
This document describes additional security considerations for your logging data. For more information about New Relic's security measures:
- See our security and privacy documentation.
- Visit the New Relic security website.
- Read this blog post that explains how you can use our log management tools to gain visibility into some of the most severe threats to modern digital businesses.
팁
Got lots of logs? Check out our tutorial on how to optimize and manage them.
Log obfuscation
The data you send to New Relic, including any additional filtering, is controlled by the configuration of the log forwarder you use. You control what customer data is logged, so be sure to follow your organization's security guidelines to mask, obfuscate, or prevent sending any sensitive data.
Additionally, we provide log obfuscation features:
- Our automatic log obfuscation, which is provided by default for all your New Relic logs data.
- Our log obfuscation feature, which lets you set up custom obfuscation rules.
Next, we'll explain both of these in more detail.
Automatic log obfuscation
The automatic log obfuscation feature is enabled for all New Relic accounts, by default. This feature automatically masks number patterns that appear to be for items such as credit cards or Social Security numbers. All integers, including spaces and hyphens that may be used as delimiters, are replaced with a string of X
es. This automatic obfuscation only applies to the message
field.
Numbers that appear to be a credit card (thirteen to sixteen digits) are obfuscated as XXXXXXXXXXXXXXXX
. For example:
- Numbers with hyphens, such as
4111-1111-1111-1111
- Numbers with spaces, such as
4111 1111 1111 1111
- Numbers with thirteen (Visa), fourteen (Diner's Club), fifteen (American Express, JCB), or sixteen digits (Visa, Mastercard, Discover, JCB), such as
4111111111111111
Nine-digit numbers with hyphens that appear to be Social Security numbers, such as 123-45-6789
, are obfuscated as XXXXXXXXX
. Nine-digit numbers with spaces, such as 123 45 6789
, or hyphens in a different pattern, such as 12-345-67-89
, are not automatically obfuscated.
If you need to opt out of automatic obfuscation, contact support.
Custom log obfuscation
With our log obfuscation feature, available with Data Plus, we let you set up rules for obfuscating parts of your data when it arrives at New Relic. This makes it easier and safer for you, rather than needing to track down sensitive data in all of your applications and try to fix them at the source. For more information, see Log obfuscation.