1.9 KiB
| implementation-status | control-origination | |||||
|---|---|---|---|---|---|---|
|
|
au-9 - [catalog] Protection of Audit Information
Control Statement
-
[a] Protect audit information and audit logging tools from unauthorized access, modification, and deletion; and
-
[b] Alert personnel or roles upon detection of unauthorized access, modification, or deletion of audit information.
Control guidance
Audit information includes all information needed to successfully audit system activity, such as audit records, audit log settings, audit reports, and personally identifiable information. Audit logging tools are those programs and devices used to conduct system audit and logging activities. Protection of audit information focuses on technical protection and limits the ability to access and execute audit logging tools to authorized individuals. Physical protection of audit information is addressed by both media protection controls and physical and environmental protection controls.
Control assessment-objective
audit information and audit logging tools are protected from unauthorized access, modification, and deletion; personnel or roles are alerted upon detection of unauthorized access, modification, or deletion of audit information.
What is the solution and how is it implemented?
Implementation a.
Add control implementation description here for item au-9_smt.a
Implementation b.
Add control implementation description here for item au-9_smt.b