Skip to main content

πŸ’Ό AU-12 AUDIT GENERATION

  • Contextual name: πŸ’Ό AU-12 AUDIT GENERATION
  • ID: /frameworks/nist-sp-800-53-r4/au/12
  • Located in: πŸ’Ό AU AUDIT AND ACCOUNTABILITY

Description​

The information system: AU-12a. Provides audit record generation capability for the auditable events defined in AU-2 a. at [Assignment: organization-defined information system components]; AU-12b. Allows [Assignment: organization-defined personnel or roles] to select which auditable events are to be audited by specific components of the information system; and AU-12c. Generates audit records for the events defined in AU-2 d. with the content defined in AU-3.

Similar​

  • Internal
    • ID: dec-c-1430ff74

Similar Sections (Give Policies To)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό NIST CSF v1.1 β†’ πŸ’Ό DE.CM-1: The network is monitored to detect potential cybersecurity events1928
πŸ’Ό NIST CSF v1.1 β†’ πŸ’Ό DE.CM-3: Personnel activity is monitored to detect potential cybersecurity events2124
πŸ’Ό NIST CSF v1.1 β†’ πŸ’Ό DE.CM-7: Monitoring for unauthorized personnel, connections, devices, and software is performed1923
πŸ’Ό NIST CSF v1.1 β†’ πŸ’Ό ID.SC-4: Suppliers and third-party partners are routinely assessed using audits, test results, or other forms of evaluations to confirm they are meeting their contractual obligations1619
πŸ’Ό NIST CSF v1.1 β†’ πŸ’Ό PR.PT-1: Audit/log records are determined, documented, implemented, and reviewed in accordance with policy1720

Sub Sections​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό AU-12 (1) SYSTEM-WIDE _ TIME-CORRELATED AUDIT TRAIL
πŸ’Ό AU-12 (2) STANDARDIZED FORMATS
πŸ’Ό AU-12 (3) CHANGES BY AUTHORIZED INDIVIDUALS