Progress Software Corporation recommends that the audit data archiver use an archive utility to move audit data to long-term storage; this is especially important if the audit data tables grow past a certain size. You can use the audit archive utility included with OpenEdge, or you can develop your own archive utility. For more information about the audit data archiver privilege, see
Audit Security.
If you manually remove the audit data from the OpenEdge database, you can preserve the data integrity by configuring the audit policy to include a MAC signature on each recorded audit event record. This allows you to validate the integrity of audit data at any time when you are archiving data. OpenEdge uses HMAC technology to preserve data integrity. The sealing of the audit data is done automatically during normal archival operations. You can further enhance security by using seals on individual records.
OpenEdge captures database row-change data to the database in which the table or field is defined. To preserve performance and storage, Progress Software Corporation recommends that you move the audit data to a specially designated OpenEdge database that has enhanced security, size, and reporting capability.
