Audit and Accountability (AU)
Level N/A
[Withdrawn: Incorporated into SI-7.]
Audit and Accountability (AU)
[Withdrawn: Incorporated into AU-14.]
Audit and Accountability (AU)
Level N/A
[Withdrawn: Moved to AU-5(5).]
Audit and Accountability (AU)
[Withdrawn: Incorporated into AU-12.]
Audit and Accountability (AU)
Level N/A
Ensure that audit records contain information that establishes the following: a. What type of event occurred; b. When the event occurred; c. Where the event occurred; d. Source of the event; e. Outcome of the event; and f. Identity of any individuals, subjects, or objects/entities associated with the event.
Audit and Accountability (AU)
Generate audit records containing the following additional information: [Assignment: organization-defined additional information].
Audit and Accountability (AU)
[Withdrawn: Incorporated into AU-12.]
Audit and Accountability (AU)
Limit personally identifiable information contained in audit records to the following elements identified in the privacy risk assessment: [Assignment: organization-defined elements].
Audit and Accountability (AU)
Level N/A
Allocate audit log storage capacity to accommodate [Assignment: organization-defined audit log retention requirements].
Audit and Accountability (AU)
Transfer audit logs [Assignment: organization-defined frequency] to a different system, system component, or media other than the system or system component conducting the logging.
