💼 AU-12 AUDIT GENERATION
- ID:
/frameworks/nist-sp-800-53-r4/au/12
Description​
The information system: AU-12a. Provides audit record generation capability for the auditable events defined in AU-2 a. at [Assignment: organization-defined information system components]; AU-12b. Allows [Assignment: organization-defined personnel or roles] to select which auditable events are to be audited by specific components of the information system; and AU-12c. Generates audit records for the events defined in AU-2 d. with the content defined in AU-3.
Similar​
- Internal
- ID:
dec-c-1430ff74
- ID:
Similar Sections (Give Policies To)​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 NIST CSF v1.1 → 💼 DE.CM-1: The network is monitored to detect potential cybersecurity events | 18 | 63 | no data | ||
| 💼 NIST CSF v1.1 → 💼 DE.CM-3: Personnel activity is monitored to detect potential cybersecurity events | 20 | 26 | no data | ||
| 💼 NIST CSF v1.1 → 💼 DE.CM-7: Monitoring for unauthorized personnel, connections, devices, and software is performed | 18 | 24 | no data | ||
| 💼 NIST CSF v1.1 → 💼 ID.SC-4: Suppliers and third-party partners are routinely assessed using audits, test results, or other forms of evaluations to confirm they are meeting their contractual obligations | 15 | 19 | no data | ||
| 💼 NIST CSF v1.1 → 💼 PR.PT-1: Audit/log records are determined, documented, implemented, and reviewed in accordance with policy | 16 | 33 | no data |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 AU-12 (1) SYSTEM-WIDE _ TIME-CORRELATED AUDIT TRAIL | no data | ||||
| 💼 AU-12 (2) STANDARDIZED FORMATS | no data | ||||
| 💼 AU-12 (3) CHANGES BY AUTHORIZED INDIVIDUALS | no data |