KIP-567 — Kafka Cluster Audit
Discussion SecurityAdmin
Introduces a structured audit log framework for Kafka that delivers authorization and administrative event notifications to a pluggable audit backend (e.g., a Kafka topic). Kafka has no built-in audit trail, making it impossible to satisfy regulatory compliance requirements (SOC2, GDPR, HIPAA) that mandate a tamper-evident record of who accessed or modified cluster resources.
Details
| Author | Igor Martemyanov |
| Status | Discussion |
| JIRA | KAFKA-9413 |
| Wiki | View on Apache Wiki |
| Created | 2020-01-23 |
| Last Modified | 2025-11-26 |
Explore how this KIP affects the Kafka protocol in the Protocol Explorer, or see the full KIP database.