Add more details in device trust logs
If device trust is checking for a setting (for example OS version), then the logs should show the actual version detected. This should be for every setting Box enables you to validate. It should also have more detail about the login attempt (hostname (not just IP address), OS, Box Drive vs Box web vs etc).
Further there should be a new event in the logs, DEVICETRUSTCHECKPASSED, with similar details so that we know the check happened and what values Box found when authorizing the device. Only having DEVICETRUSTCHECKFAILED provides no audit trail for showing the when the device trust check is being enforced.