Your organization stores all application logs from multiple Google Cloud projects in a central Cloud Logging project. Your security team wants to enforce a rule that each project team can only view their respective logs and only the operations team can view all the logs. You need to design a solution that meets the security team s requirements while minimizing costs. What should you do?
Create log views for each project team and only show each project team their application logs. This ensures that each team can only view their respective logs. Grant the operations team access to the _AllLogs view in the central logging project, which allows them to view all logs across projects. This solution meets the security team's requirements of limited access and minimizes costs by leveraging existing tools within Cloud Logging.
maybe https://cloud.google.com/logging/docs/logs-views
"Custom log views provide you with an advanced and granular way to control access to your logs data. For example, consider a scenario in which you store all of your organization's logs in a central Google Cloud project. Because log buckets can contain logs from multiple Google Cloud projects, you might want to control which Google Cloud projects different users can view logs from. Using custom log views, you can give one user access to logs only from a single Google Cloud project, while you give another user access to logs from all the Google Cloud projects." Regarding _Default view: "Cloud Logging also creates a view for the _Default bucket called _Default. The _Default view for the _Default bucket shows all logs except Data Access audit logs.", be noted it shows "all logs"
Answer is B
C is the answer.
Choose (option C). Creating log views for each project team allows you to tailor access to only show each team their relevant application logs. This fine-grained control ensures that project teams can access their own logs while maintaining isolation from logs of other teams. Granting the operations team access to the _AllLogs view in the central logging project provides them with the necessary visibility across all logs. This approach not only satisfies the security requirements but also minimizes costs by efficiently organizing and restricting access to the logs based on project teams' needs.
why not B?