Skip to main content

💼 AU-12 AUDIT GENERATION

  • Contextual name: 💼 AU-12 AUDIT GENERATION
  • ID: /frameworks/nist-sp-800-53-r4/au/12
  • Located in: 💼 AU AUDIT AND ACCOUNTABILITY

Description​

The information system: AU-12a. Provides audit record generation capability for the auditable events defined in AU-2 a. at [Assignment: organization-defined information system components]; AU-12b. Allows [Assignment: organization-defined personnel or roles] to select which auditable events are to be audited by specific components of the information system; and AU-12c. Generates audit records for the events defined in AU-2 d. with the content defined in AU-3.

Similar​

  • Internal
    • ID: dec-c-1430ff74

Similar Sections (Give Policies To)​

SectionSub SectionsInternal RulesPoliciesFlags
💼 NIST CSF v1.1 → 💼 DE.CM-1: The network is monitored to detect potential cybersecurity events1841
💼 NIST CSF v1.1 → 💼 DE.CM-3: Personnel activity is monitored to detect potential cybersecurity events2026
💼 NIST CSF v1.1 → 💼 DE.CM-7: Monitoring for unauthorized personnel, connections, devices, and software is performed1823
💼 NIST CSF v1.1 → 💼 ID.SC-4: Suppliers and third-party partners are routinely assessed using audits, test results, or other forms of evaluations to confirm they are meeting their contractual obligations1519
💼 NIST CSF v1.1 → 💼 PR.PT-1: Audit/log records are determined, documented, implemented, and reviewed in accordance with policy1632

Sub Sections​

SectionSub SectionsInternal RulesPoliciesFlags
💼 AU-12 (1) SYSTEM-WIDE _ TIME-CORRELATED AUDIT TRAIL
💼 AU-12 (2) STANDARDIZED FORMATS
💼 AU-12 (3) CHANGES BY AUTHORIZED INDIVIDUALS