At a minimum, an online monitoring system shall provide for the following security and auditing ability requirements:
(1)
- (A) An interrogation program that enables online comprehensive searching of the significant event log for the present and for the previous fourteen (14) days through archived data or restoration from backup where maintaining such data on a live database is deemed inappropriate.
(B) The interrogation program shall have the ability to perform a search based at least on the following:
- (i) Date and time range;
- (ii) Unique interface element/EGS identification number; and
- (iii) Significant event number/identifier;
(2)
(A) An online monitoring system must have a master EGS file which is a database of every EGS in operation, including at minimum the following information for each entry:
- (i) Unique interface elements/location identification number;
- (ii) EGS identification number as assigned by the franchise holder;
- (iii) Denomination of the EGS (please note that the denomination may reflect an alternative value, in the case of a multidenomination game);
- (iv) Theoretical hold of the EGS; and
- (v) Control program or programs identification number within the EGS.
- (B) If the online monitoring system retrieves any of these parameters directly from the EGS, sufficient controls must be in place to ensure accuracy of the information; and
(3)
- (A) Significant events, 23 CAR § 355-1357 are generated by an EGS and sent via the interface element to the online monitoring system utilizing an approved communication protocol.
(B) Each event must be stored in a database or databases, which includes the following:
- (i) Date and time which the event occurred;
- (ii) Identity of the EGS that generated the event;
- (iii) A unique number/code that defines the event; or
- (iv) A brief text that describes the event in the local language.