Audit and Accountability (AU)
Compile audit records from [Assignment: organization-defined system components] into a system-wide (logical or physical) audit trail that is time-correlated to within [Assignment: organization-defined level of tolerance for the relationship between time stamps of individual records in the audit trail].
Audit and Accountability (AU)
Produce a system-wide (logical or physical) audit trail composed of audit records in a standardized format.
Audit and Accountability (AU)
Provide and implement the capability for [Assignment: organization-defined individuals or roles] to change the logging to be performed on [Assignment: organization-defined system components] based on [Assignment: organization-defined selectable event criteria] within [Assignment: organization-defined time thresholds].
Audit and Accountability (AU)
Provide and implement the capability for auditing the parameters of user query events for data sets containing personally identifiable information.
Audit and Accountability (AU)
Level N/A
a. Monitor [Assignment: organization-defined open-source information and/or information sites] [Assignment: organization-defined frequency] for evidence of unauthorized disclosure of organizational information; and b. If an information disclosure is discovered: 1. Notify [Assignment: organization-defined personnel or roles]; and 2. Take the following additional actions: [Assignment: organization-defined additional actions].
Audit and Accountability (AU)
Monitor open-source information and information sites using [Assignment: organization-defined automated mechanisms].
Audit and Accountability (AU)
Review the list of open-source information sites being monitored [Assignment: organization-defined frequency].
Audit and Accountability (AU)
Employ discovery techniques, processes, and tools to determine if external entities are replicating organizational information in an unauthorized manner.
Audit and Accountability (AU)
Level N/A
a. Provide and implement the capability for [Assignment: organization-defined users or roles] to [Selection (one or more): record; view; hear; log] the content of a user session under [Assignment: organization-defined circumstances]; and b. Develop, integrate, and use session auditing activities in consultation with legal counsel and in accordance with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines.
Audit and Accountability (AU)
Level N/A
Initiate session audits automatically at system start-up.
