Once received within the Alert Logic® data center, log data is stored within an Alert Logic-defined container called a packet. Log messages are stored within a packet as a stream of compressed blocks, and for each block we calculate a SHA-256 digest. These block digests are stored separately within the packet header and are verified every time the log messages within a block are read. The packets are generated on the on-premises appliance soon after reception and prior to transport to the Alert Logic data center.
Log data can be stored for 90 days, one year, or multiple years, depending on your needs. The default is one year, but other options are available to meet budgetary and/or compliance needs.