N.Y. Comp. Codes R. & Regs. tit. 9, § 5317.40
(c) All communications in ETGs shall pass through at least one application-level firewall approved by the commission and shall not have a facility that allows for an alternate network path.
(1) A firewall application shall:
(i) maintain an audit log of the following information:
(6) The system shall record:
(8) The system shall not permit the alteration of any accounting or significant event log information without supervised access controls. In the event financial data is changed, an audit log shall be capable of being produced to document:
(d) In addition to the requirements set forth in section 5317.36 of this Part, a gaming facility licensee or a licensed manufacturer shall submit to the commission for review and approval procedures to be established in the use of remote access as set forth in section 5321.10(b) of this Title. Such procedures shall designate, at a minimum, authorized users and authorized settings of the electronic table game or games.
(1) Remote access shall authenticate all computer systems based on the authorized settings of the electronic table game and firewall application that establishes a connection with the electronic table game pursuant to the following requirements:
(i) a remote access user activity log is maintained by both the gaming facility and the licensed manufacturer, depicting the following information: